ER> There's one problem I can see about dbmail's last_login field, for use with ER> POP before SMTP authentication methods..
There are other problems with POP-before-SMTP, but it is a convenient way to deal with a situation. If you're REALLY concerned about allowing the wrong people to forward through your MTA, though, one of the more intrusive methods would be much better. These are beyond the scope of DBMail. One of the local universities, for example, will let anyone check their POP/IMAP boxes from anywhere... but you can only SEND if you first establish a VPN connection to their internal network, and send the email from a trusted, internal IP. Unfortunately for them (and the rest of the world!), it hasn't stopped people from using poorly-configured machines on their network to forward spam, because they're feeding mail to the main servers on the "protected" net... The most likely place you're going to have trouble with P-b-S authentication is AOL or other proxy users. I know this doesn't "fix" anything, but it does narrow the potential abusers. -- Jeff Brenton President, Engineered Software Products, Inc http://espi.com Questionable web page: http://dididahdahdidit.com Liberalism grants you the freedom to advocate any idea*. * Please see http://www.dididahdahdidit.com/except.php for a current list of exceptions
