Yes, right. But the abuser would simply forward an a-mail with sa scores
to the fake
originator of the triggering e-mail. I think that would be mostly useless
to spammers.
Also, if the '[EMAIL PROTECTED]' address is not too widely disclosed, there
shouldn't be
chance. Finally, if it becames to be abused, he would easily change
address.
It could be used for a DOS attack if nothing else. But most likely you
would be forwarding blowback to the faked recipients, and they would start
reporting you as a spammer. Which is what you would actually be in this
case.
The solutions of pre-enabling the sending howt in the loopback app, or
having a very specific test message format, are your two best solutions.
You should be able to have Procmail handle the second case all by itself.
Maybe it could even do the first method; I don't know.
Loren
