Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Is the info that's put into the mail headers a security risk?

Discussion in 'Security' started by damainman, Sep 19, 2004.

  1. damainman

    damainman Well-Known Member

    Joined:
    Nov 13, 2003
    Messages:
    515
    Likes Received:
    0
    Trophy Points:
    166
    Today while testing out some emails, i noticed that the users Cpanel account name is inserted into the headers.

    I sent a email from SquirrelMail on my server, to a aol account. When looking in the header i noticed this:

    Received: from CPANELACCOUNTNAME by server.mydomain.net with local (Exim 4.42)

    Wouldn't inserting the account name used to log into cpanel create a security risk, or is it not that serious?
     
    #1 damainman, Sep 19, 2004
  2. elleryjh

    elleryjh Well-Known Member

    Joined:
    Apr 12, 2003
    Messages:
    479
    Likes Received:
    0
    Trophy Points:
    166
    Well it exposes the user name, so a cracker is one step closer to brute forcing on that account, but tracing spam is made much easier with this info.
     
    #2 elleryjh, Sep 19, 2004
(You must log in or sign up to post here.)
Loading...
Similar Threads - info that's mail
  1. 01i

    Mail Service Information Incorrect

    01i, Apr 19, 2018 at 9:48 AM, in forum: E-mail Discussions
    Replies:
    1
    Views:
    39
    cPanelMichael
    Apr 19, 2018 at 1:42 PM
  2. bejbi

    Info about DNSSEC in cluster?

    bejbi, Apr 3, 2018, in forum: Bind / DNS / Nameserver Issues
    Replies:
    3
    Views:
    49
    cPanelMichael
    Apr 4, 2018
  3. ema_eltuti

    Bash script get user info

    ema_eltuti, Mar 26, 2018, in forum: cPanel Developers
    Replies:
    3
    Views:
    81
    cPanelMichael
    Mar 26, 2018
  4. GreenOliveTree

    SOLVED Obtain nameserver info

    GreenOliveTree, Mar 6, 2018, in forum: General Discussion
    Replies:
    3
    Views:
    73
    cPanelMichael
    Mar 7, 2018
  5. Bidi

    Incremental Backup creates Full instead of information that has changed

    Bidi, Feb 21, 2018, in forum: Data Protection
    Replies:
    7
    Views:
    228
    cPanelMichael
    Feb 26, 2018

Share This Page