Search The ForumSearch   RegisterRegister  LoginLogin

AfterLogic WebMail Pro
 AfterLogic Forum : AfterLogic WebMail Pro
Subject Topic: Maximum Recepients Post ReplyPost New Topic
Author
Message << Prev Topic | Next Topic >>
jeff
Newbie
Newbie


Joined: 11 March 2009
Location: Canada
Online Status: Offline
Posts: 10
Posted: 13 May 2010 at 10:03am | IP Logged Quote jeff
I was wondering if there is a way to limit the amount of recipients a user can e-mail to on a per e-mail basis? i.e. you can only e-mail 100 people at one time. Also, is there a way to limit the amount of e-mail per day? So you can e-mail a total of 100 people per day, whether you e-mail them all at once or in 100 separate e-mails it doesn't matter.

I looked in the Admin Panel but don't see any options. Was just curious if there was located in the code somewhere.

Thanks,
Jeff
Back to Top View jeff's Profile Search for other posts by jeff
 
Igor
AfterLogic Support
AfterLogic Support


Joined: 24 June 2008
Location: United States
Online Status: Offline
Posts: 6092
Posted: 14 May 2010 at 2:08am | IP Logged Quote Igor
There's no way to apply such limits in WebMail Pro. We believe the limitations of such kind should be configured on mailserver end instead.

--
Regards,
Igor, AfterLogic Support
Back to Top View Igor's Profile Search for other posts by Igor
 
nickux
Newbie
Newbie


Joined: 08 July 2010
Online Status: Offline
Posts: 16
Posted: 08 July 2010 at 5:11am | IP Logged Quote nickux
This may be correct in small installations but from my experience, larger installations require checks for abnormal use in all steps.

And abnormal use may be a nice user who makes a mistake or a malicious user who tries to bomb the system.

Perhaps such a check should also be done before relaying to the SMTP server. An httpd with a PHP that accepts large POST amounts of data may choke if someone maliciously tries to send to thousands of users without some sort of prevention.

And, of course, I'm not talking about the everyday user but someone who has scripted it in order to fool around with the system.

Perhaps PRO version could have some sort of checks using memcached (ideally) or even MySQL to keep an eye on abusers.
Back to Top View nickux's Profile Search for other posts by nickux
 
nickux
Newbie
Newbie


Joined: 08 July 2010
Online Status: Offline
Posts: 16
Posted: 08 July 2010 at 5:13am | IP Logged Quote nickux
Similarly, I believe there should be some form of control for failed login attempts, although I've implemented my own solution during external authentication.

But I think that brute force attacks could be prevented in such cases, especially when the POP3/IMAP server is not accessible but webmail login is (for example in an intranet/extranet situation).
Back to Top View nickux's Profile Search for other posts by nickux
 

If you wish to post a reply to this topic you must first login
If you are not already registered you must first register

  Post ReplyPost New Topic
Printable version Printable version

Forum Jump

Powered by Web Wiz Forums version 7.9
Copyright ©2001-2004 Web Wiz Guide