Problem: We are currently evaluating 3rd party software for sending bulk emails to our clients. While evaluating these software, we were able to send email as someone else by modifying the email address in the FROM field of the 3rd party software.
User logs on to workstation with his loging credentials.
Example: User A logs into workstation using his login credentials. User A opens 3rd party software to send bulk email. User A modifies FROM address in this software to be User B and sends the email. The recipient receives the email from User B when in reality it is User A who has sent the email.
How do we prevent users sending mails using "send as" option using 3rd party softwares whne explicit permission id not granted?
User logs on to workstation with his loging credentials.
Example: User A logs into workstation using his login credentials. User A opens 3rd party software to send bulk email. User A modifies FROM address in this software to be User B and sends the email. The recipient receives the email from User B when in reality it is User A who has sent the email.
How do we prevent users sending mails using "send as" option using 3rd party softwares whne explicit permission id not granted?
