Is the info that's put into the mail headers a security risk?

damainman · Sep 19, 2004

Today while testing out some emails, i noticed that the users Cpanel account name is inserted into the headers.

I sent a email from SquirrelMail on my server, to a aol account. When looking in the header i noticed this:

Received: from CPANELACCOUNTNAME by server.mydomain.net with local (Exim 4.42)

Wouldn't inserting the account name used to log into cpanel create a security risk, or is it not that serious?

elleryjh · Sep 19, 2004

Well it exposes the user name, so a cracker is one step closer to brute forcing on that account, but tracing spam is made much easier with this info.

Forums

The Community Forums

Interact with an entire community of cPanel & WHM users!

Is the info that's put into the mail headers a security risk?

damainman Well-Known Member

elleryjh Well-Known Member

Webmail Login Failure | Correct login information

How to use mbstring and fileinfo

In Progress [CPANEL-23606] cPanel Security Advisor missing kernel information when kernelcare is installed

Mail Client Manual Settings Information SSL and non-SSL

php-fpm allows phpsysinfo?

Share This Page

Useful Searches

The Community Forums

Interact with an entire community of cPanel & WHM users!

Is the info that's put into the mail headers a security risk?

damainman Well-Known Member

elleryjh Well-Known Member

Webmail Login Failure | Correct login information

How to use mbstring and fileinfo

In Progress [CPANEL-23606] cPanel Security Advisor missing kernel information when kernelcare is installed

Mail Client Manual Settings Information SSL and non-SSL

php-fpm allows phpsysinfo?

Share This Page