Uploaded image for project: 'Blesta Core'
  1. Blesta Core
  2. CORE-1378

Support Manager: Silently discard emails addressed from the same department

        Details

        • Type: Task
        • Status: Closed
        • Priority: Blocker
        • Resolution: Fixed
        • Affects Version/s: 3.2.0
        • Fix Version/s: 3.3.0-b1
        • Component/s: Plugins
        • Labels:
          None

          Description

          Emails addressed to a department, that are from the same department email address should be silently discarded.

          The Issue

          A spammer sends an email to support@domain.com, and spoofs the from address as support@domain.com. The system opens a ticket and sends a reply back to support@domain.com. This creates a loop.

          While we have loop detection in place, it's not very effective when checking mail via POP or IMAP, and even with it, a number of tickets are created before it kicks in.

          I can't think of any legitimate reason a support department should receive an email, with the support departments address as the sender. So, we should simply silently discard any such messages.

            Activity

            Ascending order - Click to sort in descending order
            admin Paul Phillips created issue -
            tyson Tyson Phillips (Inactive) made changes -
            Field Original Value New Value
            Fix Version/s 3.2.3 [ 10506 ]
            tyson Tyson Phillips (Inactive) made changes -
            Status Open [ 1 ] Resolved [ 5 ]
            Resolution Fixed [ 1 ]
            Hide
            Permalink
            tyson Tyson Phillips (Inactive) added a comment -

            This affects new tickets, and only those that don't match a client. So if a client happens to have the same email as the support department, then the ticket will come through. Admin's fault for using the same email.

            Show
            tyson Tyson Phillips (Inactive) added a comment - This affects new tickets, and only those that don't match a client. So if a client happens to have the same email as the support department, then the ticket will come through. Admin's fault for using the same email.
            tyson Tyson Phillips (Inactive) made changes -
            Status Resolved [ 5 ] Closed [ 6 ]

              People

              • Assignee:
                tyson Tyson Phillips (Inactive)
                Reporter:
                admin Paul Phillips
              • Votes:
                0 Vote for this issue
                Watchers:
                2 Start watching this issue

                Dates

                • Created:
                  Updated:
                  Resolved:
                  Fix Release Date:
                  27/Aug/14