Allow insecure mail auth with "Reply-To" header
ClosedPublic
Actions

Authored by epriestley on Aug 21 2011, 7:06 PM.

Tags

None

Referenced Files

	F13993763: D842.id.diff
	Wed, Oct 23, 1:16 AM

	F13993701: D842.diff
	Wed, Oct 23, 12:48 AM

	Unknown Object (File)
	Sep 21 2024, 8:11 AM

	Unknown Object (File)
	Aug 25 2024, 5:49 PM

	Unknown Object (File)
	Aug 25 2024, 9:35 AM

	Unknown Object (File)
	Aug 10 2024, 9:09 AM

	Unknown Object (File)
	Aug 6 2024, 8:37 AM

	Unknown Object (File)
	Aug 3 2024, 6:24 PM

View All 86 Files

Subscribers

aran

jungejason

Details

Reviewers

aran
jungejason
tuomaspelkonen

Maniphest Tasks

Restricted Maniphest Task

Commits

rPd1134810d616: Allow insecure mail auth with "Reply-To" header

Summary

Quora wants to handle some moderation tasks with Phabricator, but want to lower the barrier to entry for the install and let moderators adopt it gradually. One request is to allow auth rules to be relaxed so we can auth based on Reply-To to make things easier. This is insecure if configured but not really a big deal and the patch isn't big or complicated.

Test Plan

Sent a test email with bogus "From" but valid "Reply-To". It was rejected with this setting off, and allowed with this setting on.