Re: [Exim] SMTP Auth doesn't prevent users from sending as o…

Top Page
This message is part of the following thread:
M-\the complete thread tree sorted by date
M.MBarry Pederson at <-
M\Fred Viles at ->
Delete this message
Reply to this message
Author: Bruce Richardson
Date:  
To: exim-users
Subject: Re: [Exim] SMTP Auth doesn't prevent users from sending as other users
--
On Fri, Mar 19, 2004 at 01:14:44PM -0800, Fred Viles wrote:
> Depending on what you want to accomplish, another option is to simply
> add an X- header to the message with the authenticated ID.

I don't trust headers for any kind of sensitive or crucial information.
In this case, since the information can be verified directly, I don't
see the point of using a header. If you want an arbitrary placeholder
to avoid redoing some calculations, use the ACL variables.

--
Bruce

What would Edward Woodward do?
--
Content-Description: Digital signature

[ signature.asc of type application/pgp-signature deleted ]
--


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [Exim] Regex for catching RAR flavour of Bagle/beagleRe: [Exim] wildcard blacklisting by HELO?->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)