[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-security] neomail on RAQ02

Subject: Re: [cobalt-security] neomail on RAQ02
From: Taco Scargo <Taco.Scargo@xxxxxxx>
Date: Mon, 19 Nov 2001 17:32:27 +0100 (MET)
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

Hi Nico,

> I'm still testing neomail for using it.
> Now I detect an hole in it:
> 
> When I have several domains of our cusumours on one
> Raq the User test@xxxxxxxxx could log in at
> www.test2.com/neomail an could send mails from the Domain.
> 
> Is there any posibility to stop that ?

Although I can understand you concern, I do not agree.
Anyone could install a mailclient on their PC and enter bill.gates@xxxxxxxxxxxxx 
as their e-mail address. Is that a security issue ? I don't think so...

I am thinking about adding a control panel to neomail to configure this (allow 
or disallow), but I don't have much time at the moment, and I don't feel it is a 
serious issue.

With regards,

Taco Scargo

Professional Services Manager, EMEA

Sun Microsystems		Tel. +31 (71) 565 7021
Sun Cobalt Server Appliances	taco.scargo@xxxxxxx

Follow-Ups:
- Re: [cobalt-security] neomail on RAQ02
  - From: Jeff Lasman

Prev by Date: [cobalt-security] neomail on RAQ02
Next by Date: Re: [cobalt-security] [SECURITY WARNING] All Neomail users
Previous by thread: [cobalt-security] neomail on RAQ02
Next by thread: Re: [cobalt-security] neomail on RAQ02

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index