spamassassin-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Charles Gregory <cgreg...@hwcn.org>
Subject Re: [sa] Re: thanks to thinking people.
Date Thu, 22 Jul 2010 18:48:08 GMT
On Thu, 22 Jul 2010, Benny Pedersen wrote:
> On tor 22 jul 2010 20:03:18 CEST, Charles Gregory wrote
>> A forged sender looks no different than a legitimate sender. Postfix would 
>> have no way to be 'smart' about this (except for some instances of SPF 
>> fail, but then why 'bounce'? Why not reject?).
>
> and why not show logs ?

Sorry. Not OP. Just noting that the opinion that postfix should be smart 
enough to rewrite a forged sender just doesn't make sense.

> bounces is newer external since postfix change sender to mailer-daemon with 
> will end in some mailbox local if it was sent from local ip....

???? Postfix doesn't change the sender. Mailer Daemon is the 'sender' for 
all buonces. But it will be sent TO the original sender listed in the 
'From' header. If postfix has generated the From header based on 
transaction authentication, then a 'bounce' would indeed go back to the 
originating mail account. But if you are merely going by IP, then the 
'sender' that postfix tries to 'bounce' mail to will be the forged sender. 
And postfix has no way to know it is forged....

- C

Mime
View raw message