Hello CommandByMail users,
how do you address the possibility that (in theory) everyone can change
the status of tickets by faking the email address of a
$CommandByMailGroup member? Does CommandByMail provide any kind of
authentication options? Is there a best practice to prevent this sort of
abuse?
Kind regards
Eesti
Hello CommandByMail users,
how do you address the possibility that (in theory) everyone can change
the status of tickets by faking the email address of a
$CommandByMailGroup member? Does CommandByMail provide any kind of
authentication options? Is there a best practice to prevent this sort of
abuse?
In the past, we’ve used Email::Auth::GnuPg for CommandByMail for exactly
this reason.