The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Is the info that's put into the mail headers a security risk?

Discussion in 'Security' started by damainman, Sep 19, 2004.

  1. damainman

    damainman Well-Known Member

    Joined:
    Nov 13, 2003
    Messages:
    515
    Likes Received:
    0
    Trophy Points:
    16
    Today while testing out some emails, i noticed that the users Cpanel account name is inserted into the headers.

    I sent a email from SquirrelMail on my server, to a aol account. When looking in the header i noticed this:

    Received: from CPANELACCOUNTNAME by server.mydomain.net with local (Exim 4.42)

    Wouldn't inserting the account name used to log into cpanel create a security risk, or is it not that serious?
     
  2. elleryjh

    elleryjh Well-Known Member

    Joined:
    Apr 12, 2003
    Messages:
    479
    Likes Received:
    0
    Trophy Points:
    16
    Well it exposes the user name, so a cracker is one step closer to brute forcing on that account, but tracing spam is made much easier with this info.
     
Loading...

Share This Page