On 2020-05-07 10:19 a.m., Nick via mailop wrote:
On 2020-05-07 18:07 BST, John Levine via mailop wrote:
My users have lots of addresses and my mail system lets them use
whatever From: address they want.
Interesting. That seems liberal, and also risky isn't it? What's the
advantage that makes up for the risk (if you agree there is some)?
Common technique done by compromised accounts, is to use a fake MAIL
FROM, hoping you see less bounce traffic.
We strongly recommend, 'require_local_sender_domain' and preferably
'require_local_sender', however there are always ISP's who want to allow
some customers to relay, or are worried that blocking it will impact
users, and cause them to loose money/customers..
Not always easy pointing out the risks outweigh the rewards.
--
"Catch the Magic of Linux..."
------------------------------------------------------------------------
Michael Peddemors, President/CEO LinuxMagic Inc.
Visit us at http://www.linuxmagic.com @linuxmagic
A Wizard IT Company - For More Info http://www.wizard.ca
"LinuxMagic" a Registered TradeMark of Wizard Tower TechnoServices Ltd.
------------------------------------------------------------------------
604-682-0300 Beautiful British Columbia, Canada
This email and any electronic data contained are confidential and intended
solely for the use of the individual or entity to which they are addressed.
Please note that any views or opinions presented in this email are solely
those of the author and are not intended to represent those of the company.
_______________________________________________
mailop mailing list
[email protected]
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
