I did not know this, I moved to mailbox.org in December. Surely they'll only all... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		mkdirp on Feb 5, 2022 \| parent \| context \| favorite \| on: Ask HN: Best hosted alternative to Google Workspac... I did not know this, I moved to mailbox.org in December. Surely they'll only allow that if they pass the auth and the domain belongs to your account?

15characterslon on Feb 6, 2022 [–]

No, they don't do that check, that is the problem.

hda111 on Feb 6, 2022 | [–]

I don’t think they can implement such a check without breaking changes.

15characterslon on Feb 6, 2022 | | [–]

And that's why we shouldn't fix bugs anymore? https://xkcd.com/1172/

Fixing this would only affect users who send emails "from" other users email addresses, basically users who commit fraud.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact