whitelist_from_spf and whitelist_from ?
On 9/21/06, Matt Kettler <
[EMAIL PROTECTED]> wrote:
Salatiel Filho wrote:
>
> Well , i think i found where the problem is. Aparently return-path is
> [EMAIL PROTECTED] <mailto:[EMAIL PROTECTED]>
> and SA checks return-path against WHITE_LIST :/
> Is there a way to make SA check whitelist just against "from" ?
No, and that would not help you anyway. A spammer can forge you as the
From: header just as easily as the Return-Path.
The moral here is NEVER use whitelist_from. And even more important,
never use whitelist_from to whitelist your own domain.
If you must whitelist, ALWAYS use whitelist_from_rcvd or
whitelist_from_spf, which have at least some resistance to forgery.
--
[]'s
Salatiel
"O maior prazer do inteligente é bancar o idiota
diante de um idiota que banca o inteligente".
