Good morning. I have an interesting case senario, I'd like to get your input on. We have two customers, one owns domain1.tdl and the other owns domain2.tdl Now the owner of domain2.tdl feels like messing with the owner of domain1.tdl and uses his credentials to send mails from [email protected] from his [email protected] account. How can we prevent that? Any thoughts?
And besides that, you have the address details of both clients, identity theft is forbidden in most countries, tell him that you will report him to the authorities and he will never do it again unless he wants to go to court
Should that be standard on all servers, or just when you "have problem" ? Could it be problem to enable that if Wordpress sends email from: [email protected] and login as [email protected] ? Does it check whole emailadress or just the domain name ?
It checks the email address, so the emails in your example will get rejected. The problem is that if we enable it automatically, mails will fail in many scenarios as the one @elmacus mentioned. or users which use aliases in their mail client might get problems as well.
Thanks @till , that was what i suspected. So we cant activate this on any server. Alot of websites must be checked beforehand. On a new server we could have it on from start. Is it possible to only check this for the domain in future ? Should i then report it in feature request ?
Sure, might be good to use a stricter setting by default. The drawback will just be more support request here though with users that report 'a bug' when they can't send emails with a wrong address
