Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium


Mail Delivery, Wrong Recipients

Posted on 2004-11-22
Medium Priority
Last Modified: 2013-12-18
From the notes log, I can see that the mail is delivered to many recipients(these are the valid users in my company, e.g. user1@xxx.com).  As these recipients open up the mail,the value in the SendTo field contains names(invalid user, e.g user11@yyy.com)  other than the recipient's name.

What are the circunstances that would cause the server to send mail to user1@xxx.com(valid users as seen in the notes log) and the value in the SendTo field contains names(invalid user, e.g user11@yyy.com)  other than the recipient's name when the mail is opened up?

Users are asking why they are receiving mails not meant for them.  Why they are receiving mail meant for other domain(@yyy.com)?

We have ScanMail on our server to scan all incoming and outgoing mails.  There is only 1 server, is a simple set up.  There is no passthru, incoming, outgoing server, etc.
Please help.
Question by:jessicasyc
LVL 15

Expert Comment

ID: 12652191
Well, the user can also be in the CC or the BCC field.
LVL 24

Expert Comment

ID: 12655895
what is this xxx.com and yyy.com are they your own domains ?

LVL 31

Expert Comment

ID: 12656887
SPam does this all the time.  That's because SMTP has two different addressing sets per message -- the envelope headers contain a recipient list, and the message headers contain To/CC/BCC.  These do not have to match.  So, what spammers do is they often craft a generic messages for the domain containing some random To/CC/BCC listings, and then use that message with different envelope headers to actually send the message.

The mail system only uses the envelope headers for delivery -- the message headers (To/CC/BCC) are only for user display.
Concerto Cloud for Software Providers & ISVs

Can Concerto Cloud Services help you focus on evolving your application offerings, while delivering the best cloud experience to your customers? From DevOps to revenue models and customer support, the answer is yes!

Learn how Concerto can help you.


Author Comment

ID: 12666227
Hi all,

1)The users are not in the CC and BCC field.

2)@xxx is my domain, yyy is not my domain.

Thanks in advance.

Author Comment

ID: 12666339

How can I see the envelope header from document properties?  Can I conclude that the envelope header contains valid users in my domain while the message header contain another set of values(users not in my domain)

Is there any articles on this which I can produce to convince my boss?

Thank you for your help.
LVL 19

Expert Comment

ID: 12680306
Check SendTo, BCC, CopyTo and Principal fields from doc properties

Author Comment

ID: 12692441
Their names are not in the BCC, CopyTo, SendTo, Principal fields.

I think these are spamming.


LVL 31

Accepted Solution

qwaletee earned 1000 total points
ID: 12692846
You can't see the envelope header from document properties, because by definition, envelope headers are only used for routing and delivery, and are therefore discarded upon delivery.

What you CAN do is turn mail tracking on.  Domino will then keep a record of every message and its envelope headers (it doesn't keep the actual headers, but it des show who the destination address was).  There are also some undocumented NOTES.INI parameter that will cause Domino to record much more detailed information about the transition between SMTP arrival and transfer into the Notes routing system.

You might also try the R6 mail journalling features.  I think there's a way to keep the messaeg with the recipient list intact (essentially, the recipient list is the envelope destination address headers).

I can't really point to articles.  I'm sure I've seen some, but I don't have anything bookmarked.  If you research how spammers hide their identity -- and there are lots of articles about that -- you will find confirmation of what I've told you about the way SMTP works.

Finally, here's a nice little example you can run -- press ENTER at teh end of each line that I start with "Type:"  Note that your@real.address.com should be replaced with the actualy Internet address you have for your company mailbox.

Start -> Run...
Wait for window to open and for Domino to give its SMTP greeting
Wait for response -- note -- the next two lines are the envlope headers (MAIL FROM/RCPT TO), and teh RCPT TO line must be your real address!!!!
Type: MAIL FROM: qwaletee@jessicasyc.com
Wait for positive response
Type: RCPT TO: your@real.address.com
Wait for positive response
Type: DATA
Type: From: yang_chin_soo@hotmail.com
Type: To: makes@something.up
Press ENTER three times
Type: Qwaletee test
Type: .
The above line has just a single period.  After pressing ENTER, you shoudl see something like "message accepted for delivery"
Type: QUIT
Close the telnet Window if it does not close by itself, and check your mail.  You should have a new message that LOOKS LIKE it came from your hotmail address (even though we put in that weird qwaletee@jessica address in the envelope header), and it gets delivered correctly, even though the visible header reflects the fake destination address of the To: make@something.up line.

Author Comment

ID: 12722184
Thanks for all contribution.
LVL 31

Expert Comment

ID: 12732285
Did you straighten it out?

Author Comment

ID: 12779738
Still trying to figure out

Featured Post

Free Tool: Subnet Calculator

The subnet calculator helps you design networks by taking an IP address and network mask and returning information such as network, broadcast address, and host range.

One of a set of tools we're offering as a way of saying thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

I thought it will be a good idea to make a post as it will help in case someone else faces these issues. I trust this gives an idea how each entry in Notes.ini can mean a lot for the Domino Server to be functioning properly. This article discusses t…
Notes Document Link used by IBM Notes is a link file which aids in the sharing of links to documents in email and webpages. The posts describe the importance and steps to create a Lotus Notes NDL file in brief.
Despite its rising prevalence in the business world, "the cloud" is still misunderstood. Some companies still believe common misconceptions about lack of security in cloud solutions and many misuses of cloud storage options still occur every day. …
Whether it be Exchange Server Crash Issues, Dirty Shutdown Errors or Failed to mount error, Stellar Phoenix Mailbox Exchange Recovery has always got your back. With the help of its easy to understand user interface and 3 simple steps recovery proced…
Suggested Courses

571 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question