Why don’t SMTP servers just require all senders to be authenticated before accepting mail?
Asked
Active
Viewed 266 times
2 Answers
0
There are several cases where users of SMTP servers don't have an account with the service provider that they could use for authentication.
For instance an ISP or a mobile phone operator could allow you to use their SMTP server when using their services even if you are receiving the email from a different provider. In this case the user would be authenticated based on their IP address -- if the user connects from an IP within the ISP IP block, access is allowed.

Ketola
- 2,767
- 18
- 21
0
Also, SMTP servers which function as an MX for a domain (i.e. SMTP servers which handle incoming mail for a domain) need to allow incoming mail to users at that domain, without authentication.

mti2935
- 11,465
- 3
- 29
- 33