amazon-web-services - 如何使用我的用户(未经验证)地址作为 Amazon SES 的发件人？

Question

我正在写一个发送给 friend 的功能，我需要发件人地址作为发件人的电子邮件，以便更加个性化。但是，对于 Amazon SES，我似乎只能从经过验证的地址发送。

我不认为这是一个不常见的问题，我想知道其他人是如何解决这个问题的？

Answer 1

However, with Amazon SES it looks like I can only send from verified addresses.

然而，这是正确的，这是 Simple Mail Transport Protocol (SMTP) 的历史缺陷之一(也是人们如此容易成为基于电子邮件的钓鱼攻击的受害者的主要原因之一)。是来自 mail transport agent's (MTA)的发件人从邮件客户端的角度来看根本不需要匹配发件人，见 About Header Fields :

Simple Mail Transfer Protocol (SMTP) specifies how email messages are to be sent by defining the mail envelope and some of its parameters, but it does not concern itself with the content of the message. Instead, the Internet Message Format (RFC 2822) defines how the message is to be constructed.

RFC 2822 定义了 Originator fields指示消息来源的邮箱:

The "From:" field specifies the author(s) of the message, that is, the mailbox(es) of the person(s) or system(s) responsible for the writing of the message. The "Sender:" field specifies the mailbox of the agent responsible for the actual transmission of the message. For example, if a secretary were to send a message for another person, the mailbox of the secretary would appear in the "Sender:" field and the mailbox of the actual author would appear in the "From:" field.

解决方案

如上所述，您只需要在 Sender 中提供经过验证的发件人。 header 字段，可以提供任何内容 From您喜欢的地址(请参阅 Appendix: Header Fields 以获取支持的字段列表)。

注意力

由于上述原因，像这样制作您的邮件(尽管完全有效)使其更有可能被相关的邮件传输系统归类为垃圾邮件 - 以下是 AWS 在其 Whitepaper on Email Best Practices 中描述此问题的方式。 :

Think carefully about the addresses you send your email from. The “From” address will not only be visible to recipients in their email client (including in the preview pane), but will also collect reputation at some ISPs. This, along with the Subject line, will create the first impression a recipient will have of your email.

因此，您应该对 Authenticating Your Email 应用可用的措施。反过来提高你的声誉(当然强烈推荐)。