Hi Noel!

Quoting Noel Jones <[email protected]>:
Of course I understand that mail does not guarantee sender authenticity
but this is still a security problem, isn't it?
I mean it's easily possible to reject reject_non_fqdn_sender and I think
even envelope sender addresses that match any of the canonical
domains,.. but this doesn't help with the headers.
Is there an easy way for this problem? Or do I misunderstand something.
To insure that local users aren't confused by a HEADER that looks as if it came from the local domain, I use
remote_header_rewrite_domain = domain.invalid
Thanks, I've already knew that but forgot to mention the following:

In principle I'd like to have append_dot_domain = no, because I don't like that LOCAL user's mail to r...@host are simply sent to [email protected] . However when I set this remote email to u...@host is not written to [email protected].

Is there some way to get both?

Thanks,
Chris.

----------------------------------------------------------------
This message was sent using IMP, the Internet Messaging Program.

Reply via email to