Results 1 to 6 of 6

Thread: Force sender same as authentication

  1. #1
    masterx81 is offline Member
    Join Date
    Nov 2013
    Posts
    11
    Rep Power
    1

    Default Force sender same as authentication

    Hi!
    It's possible to configure zimbra to allow sending mail only if the "mail from" field is the same as the authentication?
    I'll ask this because some time ago someone has violated one or more passwords, and as the sender was a random name, i had no chanche to know what was the violated account.
    Enabling this check i can spot immediately what account is sending spam and change promptly it's password.
    I've searched a bit over the forum but i haven't find nothing similar...

    Thanks!

  2. #2
    phoenix is online now Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,497
    Rep Power
    56

    Default

    Quote Originally Posted by masterx81 View Post
    I'll ask this because some time ago someone has violated one or more passwords,
    the answer to this is to implement strong password, look in the Admin UI for the settings you can enforce for passwords.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  3. #3
    masterx81 is offline Member
    Join Date
    Nov 2013
    Posts
    11
    Rep Power
    1

    Default

    Quote Originally Posted by phoenix View Post
    the answer to this is to implement strong password, look in the Admin UI for the settings you can enforce for passwords.
    It's planned to connect zimbra to active directory/ldap and enable single logon and strong password, but for now i've only disabled the external stmp, and i need to turn it back on asap. The ~100 clients access to the mail via imap, so a password changhe of them all is not easy.
    In any case i want to lock the sender to the user used for authenticate...

  4. #4
    phoenix is online now Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,497
    Rep Power
    56

    Default

    Quote Originally Posted by masterx81 View Post
    In any case i want to lock the sender to the user used for authenticate...
    If you have the feature "Allow sending email from any address" enabled then you should disable it.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  5. #5
    masterx81 is offline Member
    Join Date
    Nov 2013
    Posts
    11
    Rep Power
    1

    Default

    It's already disable everywhere....
    In any case i mean to lock the "mail from" to the same as the AUTH LOGIN...
    If i've well understood the "Allow sending email from any address" works only via webmail.
    Also this:
    RestrictPostfixSenders - Zimbra :: Wiki
    soesn't apply as it allow to send mails from random mail address from the correct domain (for example allow to send as random@domain.com also if the account random@domain.com doesn't exists)...
    Thanks!

  6. #6
    masterx81 is offline Member
    Join Date
    Nov 2013
    Posts
    11
    Rep Power
    1

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Similar Threads

  1. Force SMTP authentication
    By resteves in forum Administrators
    Replies: 4
    Last Post: 05-17-2013, 07:36 AM
  2. Force SMTP authentication
    By resteves in forum Installation
    Replies: 1
    Last Post: 05-17-2013, 05:05 AM
  3. force authentication for all my domain
    By ddarko in forum Administrators
    Replies: 0
    Last Post: 02-24-2011, 02:59 AM
  4. Force smtp authentication!
    By lmthong in forum Administrators
    Replies: 3
    Last Post: 12-23-2010, 01:04 AM
  5. Replies: 2
    Last Post: 08-11-2007, 04:43 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •