Any Way to Plug This Hole in Local Sendmail Delivery?

Jeffrey Goldberg jeffrey at
Fri Apr 6 04:44:18 UTC 2007

On Apr 5, 2007, at 8:14 PM, RW wrote:

> On Thu, 5 Apr 2007 13:18:33 -0500
> Jeffrey Goldberg <jeffrey at> wrote:
>> The second is that the spammer could be forging in the sender
>> address (envelope FROM)
>>    MAIL FROM:<user at your.domain>
>> The third type of forgery is in the header From address.
> Bear in mind that both of these are often done legitimately; for
> example by people working from home and using their ISP's server to
> send an email to a colleague.

Yes.  If you set up something like this it is important to provide an  
SMTP submission service.  This allows your off-site users to use your  
mail server by authenticating with it.


More information about the freebsd-questions mailing list