chasquid

lordwelch/chasquid

Fork 0

Commit Graph

Author	SHA1	Message	Date
Alberto Bertogli	dd35085a32	Remove obsolete TODOs	2016-10-21 22:13:39 +01:00
Alberto Bertogli	e2fdcb3705	Add checks to prevent unauthorized relaying and impersonation This patch adds checks that verify: - The envelope from must match the authenticated user. This prevents impersonation at the envelope level (while still allowing bounces, of course). - If the destination is remote, then the user must have completed authentication. This prevents unauthorized relaying. The patch ends up adjusting quite a few tests, as they were not written considering these restrictions so they have to be changed accordingly.	2016-10-10 00:50:56 +01:00
Alberto Bertogli	69222284e0	test: Rename test directories to use an explicit order For convenience, rename the directories so the order is explicit in the name. Make the simple test run first, to save time if it's not working.	2016-09-12 04:06:56 +01:00

Author

SHA1

Message

Date

Alberto Bertogli

dd35085a32

Remove obsolete TODOs

2016-10-21 22:13:39 +01:00

Alberto Bertogli

e2fdcb3705

Add checks to prevent unauthorized relaying and impersonation

This patch adds checks that verify:

 - The envelope from must match the authenticated user. This prevents
   impersonation at the envelope level (while still allowing bounces, of
   course).
 - If the destination is remote, then the user must have completed
   authentication. This prevents unauthorized relaying.

The patch ends up adjusting quite a few tests, as they were not written
considering these restrictions so they have to be changed accordingly.

2016-10-10 00:50:56 +01:00

Alberto Bertogli

69222284e0

test: Rename test directories to use an explicit order

For convenience, rename the directories so the order is explicit in the name.
Make the simple test run first, to save time if it's not working.

2016-09-12 04:06:56 +01:00

3 Commits