Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!

Is the info that's put into the mail headers a security risk?

Discussion in 'Security' started by damainman, Sep 19, 2004.

  1. damainman

    damainman Well-Known Member

    Joined:
    Nov 13, 2003
    Messages:
    515
    Likes Received:
    0
    Trophy Points:
    166
    Today while testing out some emails, i noticed that the users Cpanel account name is inserted into the headers.

    I sent a email from SquirrelMail on my server, to a aol account. When looking in the header i noticed this:

    Received: from CPANELACCOUNTNAME by server.mydomain.net with local (Exim 4.42)

    Wouldn't inserting the account name used to log into cpanel create a security risk, or is it not that serious?
     
    #1 damainman, Sep 19, 2004
  2. elleryjh

    elleryjh Well-Known Member

    Joined:
    Apr 12, 2003
    Messages:
    479
    Likes Received:
    0
    Trophy Points:
    166
    Well it exposes the user name, so a cracker is one step closer to brute forcing on that account, but tracing spam is made much easier with this info.
     
    #2 elleryjh, Sep 19, 2004
(You must log in or sign up to post here.)
Loading...
Similar Threads - info that's mail
  1. Edwin Huijsing

    information needed for .cpanel.yml

    Edwin Huijsing, Aug 20, 2018 at 3:32 AM, in forum: General Discussion
    Replies:
    1
    Views:
    26
    cPanelAdamF
    Aug 20, 2018 at 1:05 PM
  2. Nabbello

    SOLVED Hide os information on top of WHM?

    Nabbello, Jul 3, 2018, in forum: User Experience
    Replies:
    4
    Views:
    93
    cPanelLauren
    Jul 3, 2018
  3. theDaveB

    Domain contact information changed, not by me

    theDaveB, Jul 2, 2018, in forum: Security
    Replies:
    4
    Views:
    94
    cPanelLauren
    Jul 9, 2018
  4. CloudNexus

    SOLVED cPanel plugin - access account package info?

    CloudNexus, Jun 10, 2018, in forum: cPanel Developers
    Replies:
    4
    Views:
    163
    cPanelLauren
    Jun 18, 2018
  5. webtipster

    Cannot Update var/cpanel/sysinfo.config

    webtipster, May 22, 2018, in forum: EasyApache
    Replies:
    2
    Views:
    199
    cPanelLauren
    May 23, 2018

Share This Page

  1. This site uses cookies to help personalise content, tailor your experience and to keep you logged in if you register.
    By continuing to use this site, you are consenting to our use of cookies.
    Accept Learn More...
    Dismiss Notice