I don't remember the RFC in detail but it might well be that an unqualified username is not "legal" even in the headers.
Also, annimandary's posts do not have a Date: header. I would just forget about his posts, why reply?
Rather then spam the list, the lack of correct (fully qualified or not) From header could be used for easily forging posts (in particular for a user forging another user in the same domain). To avoid this the lists server could either reject or rewrite the From header (this time I would say quite legally, but better have a look) to reflect the envelope sender. Needless to say, if the original server allows setting the envelope sender arbitrarily...
Having said so we had some fun lately it seems, with the kagy robot risking a loop after it had been subscribed by someone. Also a couple of Norton antivirus reports (the original messages seemed to contain Sober.C), probably some virus forging the list address as sender. Bounces... they are such a pain!
Sorry again for the tone of my previous post and now sorry for the OT!!
Happy new year to you all...
Giuliano
At 3:01 pm -0500 2004/01/05, Rod Giffin wrote:
Giuliano Gavazzi said:fools... his From: header does not contain a domain but just a "username" and your mailservers did complete it with their local domain name. Pretty bad choice, modifying the content of the From header, urgh...
Although your technical assessment of what is happening is likely correct - I think your sentiment is misplaced.
His mail server appears to be bow.intnet.mu, although that may not be a valid return address either. Nonetheless, your mail administrator should be able to modify the configuration of your mail server to prevent this from happening.
If that's you, and if you use Postfix, refer to http://www.postfix.org/uce.html. By default, it is allowed, but the default behavior should be modified - it rarely is.
I believe but I'm not sure that qmail also has the same capabilities.
In fact, it should be the list server which rejects messages with malformed headers - otherwise it becomes possible to spam the list.
Rod.
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
