On Thu, 22 Mar 2007 09:14:50 -0500 Gary Bowling <[EMAIL PROTECTED]> wrote:
> Not that MS is very good at following the RFC's, but interesting. The MS-Server is behind the Firewall, isn't? do the ms-client use SMTP-AUTH to send emails? > I can understand that the server header is of importance as well as the > email address of the client. But the internal/external address of the > client machine seems pretty useless for the email piece. The actual > server is going to log all that info, so it could be had easily enough > for an admin who might be troubleshooting things. With that header in the mail, it would be a task of seconds ... > But it doesn't seem > like the recipient needs to know that info. It actually seems as though > the recipient could only use it for malicious activity and would have no > legitimate use for it. Security by obscurity won't work This header can be used to trust the sender as he/she used some authentication before he/she could send the mail. Just my opinion -- I'm sorry, /pub/lunch
