On 2025-06-22 at 07:44:14 UTC-0400 (Sun, 22 Jun 2025 12:44:14 +0100) Matthew via Postfix-users <[email protected]> is rumored to have said:
> Is this a known issue or have I uncovered an interesting MAIL FROM spoofing > edge case? Neither. There's a conceptual mismatch with reality. There is no meaning to the words 'authenticated,' 'unauthenticated,' or 'login' if SASL is disabled. The only 'login' possible in SMTP in Postfix is via SASL. It is not possible to "spoof" an authentication system that is not present. So, in a sense, this is a known and logically obvious behavior. -- Bill Cole _______________________________________________ Postfix-users mailing list -- [email protected] To unsubscribe send an email to [email protected]
