changing email address in "From" field

[Guest]

I am in the process of setting up a Windows 2003/Exchange 2003/Outlook 2003
system for my company. I noticed that it is possible for the users to add
the "From" field in a new message in Outlook and to choose any user from the
Global Address List to put into the "From" field. I am worried that the
users will send messages spoofing other Active Directory users' email
addresses in the "From" field. Will the users be able to do this? If so,
how can I get around this? I do not plan to hide users from the Global
Address List.

Thanks in advance.

 

[Adam Membrey]

They can only send from another users email address if they're listed as
"delegates".

 

[Vanguard]

I am in the process of setting up a Windows 2003/Exchange 2003/Outlook
2003
system for my company. I noticed that it is possible for the users to
add
the "From" field in a new message in Outlook and to choose any user
from the
Global Address List to put into the "From" field. I am worried that
the
users will send messages spoofing other Active Directory users' email
addresses in the "From" field. Will the users be able to do this? If
so,
how can I get around this? I do not plan to hide users from the
Global
Address List.

Thanks in advance.

And I thought it was the Exchange administrator that dictated what got
put into the From header from e-mails issued from that user's mailbox.
So no matter what I put in the From field in my e-mail client, and no
matter what my e-mail client puts in the From header in my message, the
Exchange server strips all that out and puts in the company-qualified
headers based on those defined for my mailbox. The user gets a mailbox,
not access to its attributes. For Exchange to be considerate a
corporate solution, it must have a means of enforcing what headers get
used and what are their values.

An Outlook newsgroup is probably not where to ask how Exchange works.
Try an Exchange newsgroup.

 

[Lanwench [MVP - Exchange]]

I am in the process of setting up a Windows 2003/Exchange
2003/Outlook 2003 system for my company. I noticed that it is
possible for the users to add the "From" field in a new message in
Outlook and to choose any user from the Global Address List to put
into the "From" field. I am worried that the users will send
messages spoofing other Active Directory users' email addresses in
the "From" field. Will the users be able to do this? If so, how can
I get around this? I do not plan to hide users from the Global
Address List.

Thanks in advance.

If they can actually "send as" other users, someone has messed up
permissions on your Exchange server - this is not permitted by default.

First, find out what groups these users belong to.
See whether you can open the full mailbox (not just the inbox) in the
advanced properties of the Exchange server service in Outlook (open
additional mailboxes)
Check what permissions may have been set in Outlook (properties of
root-level mailbox folder - Outlook Today - permissions)

Knowledgebase article 262054 explains how to grant full mailbox access, but
it should also be helpful in telling you where to look for where access is
already granted...be careful, as you don't want to accidentally remove
anything that *should* be there.

Also see http://support.microsoft.com/?scid=kb;en-us;326061

And note that this question really belongs in an Exchange group.

 

[Sue Mosher [MVP-Outlook]]

The user can change the From *if* they have Send On Behalf Of or Send As
permission on another mailbox.

 

[Vanguard]

The user can change the From *if* they have Send On Behalf Of or Send
As permission on another mailbox.

Okay, but that still means the From header is whatever is enforced on
the other Exchange mailbox. So the sender can use their own mailbox
with From="(e-mail address removed)" or they might be able to use someone
else's mailbox with From="(e-mail address removed)", but they won't be
able to lie about who they are by trying to bogus up their From field in
Outlook to use something like "(e-mail address removed)".

 

[Sue Mosher [MVP-Outlook]]

Yes, that's exactly the way Exchange is designed to work. Most
administrators would doubtless consider this a good thing.

Are you looking for different behavior? The newsgroup interface you are
using apparently does not quote earlier messages in the thread, making your
latest message so short on detail that you risk not getting the answer
you're looking for. Please take the time to quote enough of the original
message to make your issue understandable.

--
Sue Mosher, Outlook MVP
Author of
Microsoft Outlook Programming - Jumpstart for
Administrators, Power Users, and Developers

 

[_Vanguard_]

Yes, that's exactly the way Exchange is designed to work. Most
administrators would doubtless consider this a good thing.

I think that is a good thing, too. Employees should never be allowed to
claim they are someone else, especially at a different company or
domain.