Help
FortiMail
FortiMail provides advanced, multi-layer protection against the full spectrum of email-borne threats
gmichailidis
Staff
Staff

Created on ‎05-08-2023 11:47 PM Edited on ‎08-19-2025 04:30 AM By Moderator

Article Id 255743

Technical Tip: How to stop read receipts from inbound email

Description

 

This article describes how an external email sender can request a read-read receipt in an email, prompting the protected recipient's e-mail client to send a receipt or in the case of some mail clients send it automatically.

 

Scope

 

FortiMail.

 

Solution

 

 

gmichailidis_0-1683614269754.png

 

When sending back a read-receipt, as this is an SMTP communication, the external recipient can be added to a user safelist, if the resource profile option 'Safelist recipients of outbound message' is enabled.

 

In the GUI:

 

kb-edit-7.PNG

 

In the CLI:

 

FML # config profile resource

FML (resource) # edit Res_Default

FML (Res_Default) # set outbound-safelist
disable disable option
enable enable option

--- current value ---
outbound-safelist: enable

 

kb-edit-8.PNG

 

The sender's e-mail client inserts the header 'Disposition-Notification-To:' and, based on this header, the protected user's e-mail client will prompt for a read request or send it automatically.

 

gmichailidis_2-1683614297267.png

 

It is possible to 'disarm' such read-receipt requests so that the protected user's e-mail client will not even know there was a request in the first place.

816
0 Kudos
Suggest New Article
Article Feedback
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2025 Fortinet, Inc. All Rights Reserved.