Results 1 to 6 of 6

Thread: Force sender same as authentication

  1. #1
    Join Date
    Nov 2013
    Posts
    11
    Rep Power
    1

    Default Force sender same as authentication

    Hi!
    It's possible to configure zimbra to allow sending mail only if the "mail from" field is the same as the authentication?
    I'll ask this because some time ago someone has violated one or more passwords, and as the sender was a random name, i had no chanche to know what was the violated account.
    Enabling this check i can spot immediately what account is sending spam and change promptly it's password.
    I've searched a bit over the forum but i haven't find nothing similar...

    Thanks!

  2. #2
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,587
    Rep Power
    58

    Default

    Quote Originally Posted by masterx81 View Post
    I'll ask this because some time ago someone has violated one or more passwords,
    the answer to this is to implement strong password, look in the Admin UI for the settings you can enforce for passwords.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  3. #3
    Join Date
    Nov 2013
    Posts
    11
    Rep Power
    1

    Default

    Quote Originally Posted by phoenix View Post
    the answer to this is to implement strong password, look in the Admin UI for the settings you can enforce for passwords.
    It's planned to connect zimbra to active directory/ldap and enable single logon and strong password, but for now i've only disabled the external stmp, and i need to turn it back on asap. The ~100 clients access to the mail via imap, so a password changhe of them all is not easy.
    In any case i want to lock the sender to the user used for authenticate...

  4. #4
    phoenix is offline Zimbra Consultant & Moderator
    Join Date
    Sep 2005
    Location
    Vannes, France
    Posts
    23,587
    Rep Power
    58

    Default

    Quote Originally Posted by masterx81 View Post
    In any case i want to lock the sender to the user used for authenticate...
    If you have the feature "Allow sending email from any address" enabled then you should disable it.
    Regards


    Bill


    Acompli: A new adventure for Co-Founder KevinH.

  5. #5
    Join Date
    Nov 2013
    Posts
    11
    Rep Power
    1

    Default

    It's already disable everywhere....
    In any case i mean to lock the "mail from" to the same as the AUTH LOGIN...
    If i've well understood the "Allow sending email from any address" works only via webmail.
    Also this:
    RestrictPostfixSenders - Zimbra :: Wiki
    soesn't apply as it allow to send mails from random mail address from the correct domain (for example allow to send as random@domain.com also if the account random@domain.com doesn't exists)...
    Thanks!

  6. #6
    Join Date
    Nov 2013
    Posts
    11
    Rep Power
    1

Similar Threads

  1. Force SMTP authentication
    By resteves in forum Administrators
    Replies: 4
    Last Post: 05-17-2013, 07:36 AM
  2. Force SMTP authentication
    By resteves in forum Installation
    Replies: 1
    Last Post: 05-17-2013, 05:05 AM
  3. force authentication for all my domain
    By ddarko in forum Administrators
    Replies: 0
    Last Post: 02-24-2011, 01:59 AM
  4. Force smtp authentication!
    By lmthong in forum Administrators
    Replies: 3
    Last Post: 12-23-2010, 12:04 AM
  5. Replies: 2
    Last Post: 08-11-2007, 04:43 AM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •