On 04 Oct 2018, at 00:00, Tobi <tobs...@brain-force.ch> wrote: > if your auth senders spoof from headers: block their login account and > terminate their service
Nothing necessarily wrong with spoofing From: noreply@ is a spoofed From: >> we're running a small smtp send only service for authenticated users >> only. Even though we only accept allowed combinations of authenticated >> user and pre-defined envelope from addresses with access_maps, some >> smartasses started to spoof From: addresses so we got bad reputation at >> receiver sites. I don’t think that’s how it works. >> Is this a good idea to check if envelope from and from matches Not especially. I wouldn’t use a service that did that. -- And Super Heroes come to feast To taste the flesh not yet deceased And all I know is still the beast is feeding.
