Enhanced Cross-Tenant Spoofing Protections

[MHillyer]

As a mailops engineer operating an environment that allows for direct connection by users, and leveraging the policy helpers, I need to mitigate certain potential attacks.

1. A malicious user connects and properly authenticates. They know the sending domain of a peer on the same shared IPs as them and use that domain either as their MAIL FROM or their friendly from header, allowing them to pass SPF.
2. A malicious user connects and properly authenticates. They know the signing domain of a peer on the same server as them and use that domain as their MAIL FROM, allowing them to sign DKIM.
3. A malicious user connects and properly authenticates. They know the name of the tenant header and are able to guess the content of the header for a peer, allowing them to identify themselves as that tenant and use the tenant's dedicated IPs.

While these scenarios can be handled in Lua, those using our helpers may not have the skillset needed to mitigate these security concerns.