Email address "display name" validation
Add a new test to blacklist emails in which the "display name" part of the From header address is spoofed, but the domain in the address specification part is not. For example:
From: "John Doe (CEO)" .
The list of display names in the organization could be obtained by ORF from 3 sources: Active Directory, SQL Database, Text File.
1 comment
29
SMTP-based Recipient Validation
Add an SMTP-based validation data source to the Recipient Validation Test of ORF. This source would connect to a specific SMTP server and attempt to validate the recipient real-time using the RCPT command. This would enable the Recipient Validation test to work with third-party MTAs without having to compile and maintain a list of valid recipients for the SQL or the Text File sources.
26
Add DomainKeys Signatures to Outgoing Emails
DKIM requires outgoing emails to be signed with a special signature, so if a recipient knows that all legitimate emails sent from your domains are signed with such signatures, they can drop spoofed emails (which are unsigned or have an invalid signature). This feature would allow ORF to add DomainKeys signatures to outgoing emails. For more information about DomainKeys, please visit http://dkim.org/.
25
Disclaimer Support
Support adding a legal disclaimer (or other footer) to outgoing emails.
8