Just telnet on any host on 25 port and type From: some_real_email and email will be send. I think thats how scam works.
On Oct 20, 2016 6:21 PM, "Noel Jones" <njo...@megan.vbhcs.org> wrote: > On 10/20/2016 8:46 AM, Paweł Grzesik wrote: > > Hi All, > > > > I noticed that it's really easy to send an e-mail as a real user by > > simply > > typing in the mail body: > > > > From: <mail> > > > > Is there any way to prevent from this? I checked that even when we > > specify > > MAIL FROM: <not_existing_user> > > > > and then in the body: > > From: <real_user> > > > > postfix will send an e-mail with From: <real_user>, the one from the > > body. > > It sounds not right. > > > > Thanks, > > Pawel > > > > Please provide a sample file that demonstrates the problem, along > with your "postconf -n" and postfix logs while processing that file. > > > > -- Noel Jones >
