[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [cobalt-developers] Update of Neomail 1.25 released on pkg.nl.cobalt.com

Tarren,

> >> Any chance that the Neomail package could be updated to do a check when
> >> logging in that the username supplied actually belongs to the virtual
> >> site from which it is being accessed?
> >
> > Why ?
> 
> Several reasons that I can think of...
> 
> a) If you access Neomail by a domain unrelated to your user-id, you 
> cannot send any email, as you end-up with an invalid email address 
> (user1@xxxxxxxxxxx - which won't exist) - however, you can read all your 
> email, so...
So ? If I try to put diesel in a normal gazoline car it will also not work.
One should just follow the instructions. I also had people complain the package 
was not working. Later I found out they updated perl... which broke more things.
 
> b) If customers are charged transfer usage, they can avoid some by 
> reading their email through another customers domain, thereby inflating 
> the other customers bill.
Reasonable point. I will research wether this check is possible.
However, a person that has multiple virtual sites and has his e-mail forwarded 
to one single account on one virtual domain won't be able to do the 'trick'.

> Point a) is enough for me, although b) is a consideration too - I just 
> know I'm going to get loads of customers try to use the boxes main 
> address instead of their own domain, and then complain about not being 
> able to send mail!
Feel free to make the patch yourself and submit it to me.... I currently do not 
feel very urged to spend the time on these kind of things. I don't have much 
time ;)

But thanks for your feedback anyway !

With regards,

Taco Scargo

Professional Services Manager, EMEA

Sun Microsystems		Tel. +31 (71) 565 7021
Sun Cobalt Server Appliances	taco.scargo@xxxxxxx