Andreas Metzler wrote: > Julian Mehnle <[EMAIL PROTECTED]> wrote: > > It's about forging an e-mail sender's identity. By preventing the > > unauthorized use of domains as the sender domain of e-mails, most of > > the practiced cases of identity forgery are prevented. [...] > > If I send an e-mail over mail.nusrf.at with envelope-from > [EMAIL PROTECTED] I am _not_ forging anything or making > "unauthorized use of domains"
Yes, you are. The envelope-from address is not a reply-to address, it's a sender address. If you are sending from mail.nusrf.at, you are not sending from logic.univie.ac.at. So you should not specify <[EMAIL PROTECTED]> as the envelope-from address, or you'd be forging it.
