> I'm guessing your telnet client machine is within mynetworks. If so, none of > your other checks are valid and any/all mail sent via this telnet is thus > accepted regardless of mail from: forgery. > > -- > Stan
Hi Stan, Actually my server was not from the same network. It's from home and it doesn't have any special access. > It's like LuKreme said. What you're seeing is a "feature" of SMTP that > Postfix implements correctly. > > And there are many valid reasons to be able to claim mail came from > somewhere else. For instance, the university I attended provides us with > lifetime forwarding e-mail addresses. Mail sent to that address forwards > to whatever address I choose. I have no mailbox on a university server nor > the ability to send via their servers. Yet, since I'm an officer of my > alumni class there, I prefer to use that address for e-mail that is class > business. The only way to do that is to send via my server and "spoof" the > sending address. > > Also, consider the analogy to paper mail. The sender address you put on a > paper mail envelope is the address you want mail returned to, not the > address of the mail box you drop it in (I put my home address on my > envelopes, then drop it in a post office drop box at work). > > -- Larry Stone Hi Larry, Nice analogy. I think I got the picture now. I understand that spamassassin deals with this issues so I guess I'll be tinkering it. Thank you.