1 |
On 2017-12-04 18:08, William L. Thomson Jr. wrote: |
2 |
> On Mon, 4 Dec 2017 18:01:39 -0500 |
3 |
> "William L. Thomson Jr." <wlt-ml@××××××.com> wrote: |
4 |
> |
5 |
> > On Mon, 4 Dec 2017 14:43:15 -0800 |
6 |
> > Matt Turner <mattst88@g.o> wrote: |
7 |
> > > |
8 |
> > > Sorry. I think I was confusing a number of irritating things you've |
9 |
> > > done: email spoofing, |
10 |
> > |
11 |
> > That was a complete accident due to a new version of Kmail that had |
12 |
> > the from field editable by default. It was NOT intentional. Not the |
13 |
> > 1st time. The 2nd time was for confirmation. I was in disbelieve such |
14 |
> > abuse was even possible with @gentoo.org addresses. That was a |
15 |
> > shocking discovery given I have administrated mail severs for quite |
16 |
> > some time. In part why I use ASSP. |
17 |
> |
18 |
> I filed a bug with KDE on that but of course went WONTFIX. I think its |
19 |
> horrible as it allows people to spoof, spam and do bad things... |
20 |
> |
21 |
> Make From field in the composer read only |
22 |
> https://bugs.kde.org/show_bug.cgi?id=373313 |
23 |
> |
24 |
> Me personally I would never make software or change it to allow people |
25 |
> to make such a mistake. Others felt differently. I stopped using |
26 |
> Kmail2. I use Claws-mail now, but it also has editable from field.... :( |
27 |
> |
28 |
> Email clients should only allow email address that are in configured |
29 |
> accounts. But that is my opinion. Others seem to feel differently. I |
30 |
> cannot see any good reasons for such really. |
31 |
|
32 |
One reason is to send from a nonexistent account to avoid getting |
33 |
replies in the first place. |
34 |
|
35 |
Like donotreply@×××××××.com for order updates, confirmation emails, and |
36 |
so on. A person doesn’t actually exist behind the email, but emails have |
37 |
to say they’re coming from somewhere. And, a properly setup SMTP server |
38 |
will need an credentials to send those email. If donotreply doesn’t |
39 |
exist, then the account setup will (probably) have an email address that |
40 |
differs from the one that’s used to compose the email. |
41 |
|
42 |
I use it myself when I need to inform our customers about a change. I |
43 |
don’t want to field hundreds of email personally, so I change the from |
44 |
address. |
45 |
|
46 |
So, email clients most definitely should allow an individual to change |
47 |
the from field. It’s a good thing. But, like any other tool, it can be |
48 |
used improperly. |