| 1 |
On 2017-12-04 18:08, William L. Thomson Jr. wrote: |
| 2 |
> On Mon, 4 Dec 2017 18:01:39 -0500 |
| 3 |
> "William L. Thomson Jr." <wlt-ml@××××××.com> wrote: |
| 4 |
> |
| 5 |
> > On Mon, 4 Dec 2017 14:43:15 -0800 |
| 6 |
> > Matt Turner <mattst88@g.o> wrote: |
| 7 |
> > > |
| 8 |
> > > Sorry. I think I was confusing a number of irritating things you've |
| 9 |
> > > done: email spoofing, |
| 10 |
> > |
| 11 |
> > That was a complete accident due to a new version of Kmail that had |
| 12 |
> > the from field editable by default. It was NOT intentional. Not the |
| 13 |
> > 1st time. The 2nd time was for confirmation. I was in disbelieve such |
| 14 |
> > abuse was even possible with @gentoo.org addresses. That was a |
| 15 |
> > shocking discovery given I have administrated mail severs for quite |
| 16 |
> > some time. In part why I use ASSP. |
| 17 |
> |
| 18 |
> I filed a bug with KDE on that but of course went WONTFIX. I think its |
| 19 |
> horrible as it allows people to spoof, spam and do bad things... |
| 20 |
> |
| 21 |
> Make From field in the composer read only |
| 22 |
> https://bugs.kde.org/show_bug.cgi?id=373313 |
| 23 |
> |
| 24 |
> Me personally I would never make software or change it to allow people |
| 25 |
> to make such a mistake. Others felt differently. I stopped using |
| 26 |
> Kmail2. I use Claws-mail now, but it also has editable from field.... :( |
| 27 |
> |
| 28 |
> Email clients should only allow email address that are in configured |
| 29 |
> accounts. But that is my opinion. Others seem to feel differently. I |
| 30 |
> cannot see any good reasons for such really. |
| 31 |
|
| 32 |
One reason is to send from a nonexistent account to avoid getting |
| 33 |
replies in the first place. |
| 34 |
|
| 35 |
Like donotreply@×××××××.com for order updates, confirmation emails, and |
| 36 |
so on. A person doesn’t actually exist behind the email, but emails have |
| 37 |
to say they’re coming from somewhere. And, a properly setup SMTP server |
| 38 |
will need an credentials to send those email. If donotreply doesn’t |
| 39 |
exist, then the account setup will (probably) have an email address that |
| 40 |
differs from the one that’s used to compose the email. |
| 41 |
|
| 42 |
I use it myself when I need to inform our customers about a change. I |
| 43 |
don’t want to field hundreds of email personally, so I change the from |
| 44 |
address. |
| 45 |
|
| 46 |
So, email clients most definitely should allow an individual to change |
| 47 |
the from field. It’s a good thing. But, like any other tool, it can be |
| 48 |
used improperly. |
Archives