[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] neomail on RAQ02
- Subject: Re: [cobalt-security] neomail on RAQ02
- From: Taco Scargo <Taco.Scargo@xxxxxxx>
- Date: Mon, 19 Nov 2001 17:32:27 +0100 (MET)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
Hi Nico,
> I'm still testing neomail for using it.
> Now I detect an hole in it:
>
> When I have several domains of our cusumours on one
> Raq the User test@xxxxxxxxx could log in at
> www.test2.com/neomail an could send mails from the Domain.
>
> Is there any posibility to stop that ?
Although I can understand you concern, I do not agree.
Anyone could install a mailclient on their PC and enter bill.gates@xxxxxxxxxxxxx
as their e-mail address. Is that a security issue ? I don't think so...
I am thinking about adding a control panel to neomail to configure this (allow
or disallow), but I don't have much time at the moment, and I don't feel it is a
serious issue.
With regards,
Taco Scargo
Professional Services Manager, EMEA
Sun Microsystems Tel. +31 (71) 565 7021
Sun Cobalt Server Appliances taco.scargo@xxxxxxx