Allow "Forward as attachment" to prevent spoofing
The problem with forwarding an email from a mailtrap domain is that the original "From" address remains intact, creating a situation where it appears the forwarded email appears like the sender (mailtrap) is spoofing the original domain.
For instance, a test forwarded email, note the content:
Received: from mailtrap.io (ec2-52-55-102-193.compute-1.amazonaws.com [22.214.171.124])
by ismtpd0024p1iad2.sendgrid.net (SG) with ESMTP id OlrG4Ki2RRyRjj3CpUmVYg
for <<a rel="nofollow noreferrer" href="mailto:email@example.com">firstname.lastname@example.org</a>>; Wed, 25 Apr 2018 17:35:19.161 +0000 (UTC)
Clearly should be rejected for safety.
Our company's rules tag this as a spoofing email, which of course confuses our testers.
Gmail blocks these so they never get to the inbox.
It would be great if we could "Forward as an attachment", with the "From" as a mailtrap forwarder noreply address, and the Subject [MAILTRAP FORWARD] (plus original subject)
Thank you so much for your suggestion!
We’ll consider implementing it once we go through our to-do’s with bigger priority in our backlog and if we see that this request has high demand.
Larry Wilson commented
Also, it would be great to let the user decide what message to display in the body for the forwarded email.