Subsequently received emails fishing and password for use in spam campaigns. Users, even if directed, continue to provide its data to the cracker.

The cracker, when given the facts of user access, change the field to TRUE zimbraPrefReplyToEnabled and inserts an e-mail response difernete to receive the returns of the spam messages.

I wonder if it is possible to block the change of the field zimbraPrefReplyToEnabled?

Thank you!