[rt-users] CommandByMail: Fake Email Vulnerability?

Eesti Mate em at t35t.in-berlin.de
Tue Feb 2 19:19:51 EST 2010


Hello CommandByMail users,

how do you address the possibility that (in theory) everyone can change
the status of tickets by faking the email address of a
$CommandByMailGroup member? Does CommandByMail provide any kind of
authentication options? Is there a best practice to prevent this sort of
abuse?

Kind regards
Eesti




More information about the rt-users mailing list