Foundry376/Mailspring
1
1
Fork 0
mirror of https://github.com/Foundry376/Mailspring.git synced 2024-09-21 07:46:06 +08:00
Code Issues Packages Projects Releases Wiki Activity

warns suspicious message only on differing domain (#2343)

Browse source 
For example, the following is *not* suspicious:
```
From: foo@example.org
Reply-To: bar@example.org
```

While the following remains suspicious:
```
From: foo@example.org
Reply-To: foo@example.com
``` 

This commit fixes #2342.
This commit is contained in:
Ollie Ford 2016-05-31 20:08:18 +01:00 committed by Ben Gotow
parent c76cb9739d
commit 3df2b1e3be
1 changed files with 5 additions and 3 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

8
internal_packages/phishing-detection/lib/main.jsx
View file

@ -48,9 +48,11 @@ class PhishingIndicator extends React.Component {
// phishing attempt boils down to checking the `replyTo` attributes on
// `Message` models from `MessageStore`.
if (message && message.replyTo && message.replyTo.length !== 0) {
const from = message.from[0].email;
const replyTo = message.replyTo[0].email;
if (replyTo !== from) {
const from = message.from[0].email
const fromDomain = from.split('@')[1];
const replyTo = message.replyTo[0].email
const replyToDomain = replyTo.split('@')[1];
if (replyToDomain !== fromDomain) {
return (
<div className="phishingIndicator">
<b>This message looks suspicious!</b>