[Mailman-Users] non-subscriber managed to post to a subscriber only list (SOLVED)

Grant Taylor gtaylor at riverviewtech.net
Mon Jan 26 23:54:39 CET 2009

On 01/26/09 16:51, Lindsay Haisley wrote:
> It's no more difficult to spoof the From header than it is to spoof 
> the envelope sender address, but at least this way, if it happens 
> again, you'll more easily see which header got the spam through and 
> not have to go digging for it.

I'll agree it's almost trivial to spoof either or both if you know what 
you are doing.

However there is quite a bit of difference in the filtering of the SMTP 
envelope sender that is likely to exist (to some degree) along the way.

It will be *VERY* difficult for me to spoof an SMTP envelope sender for 
Microsoft with out SPF filters (and the likes) detecting it and acting 

Grant. . . .

More information about the Mailman-Users mailing list