Tom Moulton tmda <tom <at> moulton.us> writes: > Because the TO: can be spoofed, the only sure way is to look at > the SMTP fields (envelope)
Why does that matter? Does an attacker gain anything from spoofing the "To:" header instead of just actually sending to the address that they'd like? Forgive me if this is obvious or documented. _____________________________________________ tmda-users mailing list ([EMAIL PROTECTED]) http://tmda.net/lists/listinfo/tmda-users
