Correct default “from” address so email not flagged as spoofed

  • By default, your emails are sent “from” the administrative address of the website. Please change them to send from an address in the domain instead, e.g. “[email protected]” — like the notifications generated by WordPress do.

    There are two reasons for this: first, the email address associated with the administrative login is private information and should not be exposed by some random person filling out a form on the site.

    Second, some hosting providers — Dreamhost for instance — refuse to send mail if the “from” address is from a different domain than the website that generates it. This is probably why a lot of people are reporting that the notices are not getting sent out — they’re being blocked by the sender because it looks like they are “spoofed”.

    Please use a default value for this field that respects the website owner’s privacy and is most likely to actually work “out of the box”.

    Thanks

Viewing 1 replies (of 1 total)
  • Plugin Contributor Asmi Patel

    (@asmipatel)

    Hello @tylertork,

    Thank you for writing down to us. We do have documentation in which we state about this Incorrect From Header and suggest our users to use that email if there is an issue with the From email. But yes, I get why you are suggesting this improvement for the plugin. I will take a note of this and let my team know about it.

    Thank you for your suggestion. We really appreciate it.

Viewing 1 replies (of 1 total)
  • The topic ‘Correct default “from” address so email not flagged as spoofed’ is closed to new replies.