My website allows a person to enter their name and email address when sending out a referral. Then our site composes an email using mail() to send it out. But I think more and more ISPs are rejecting such emails because they think we are spoofing. The FROM: field on the emails going out use their name and their email address but, of course, the email is actually sent from my domain. What is the best way to overcome so much email being blocked?
- No longer attempt to use their name and email as the FROM?
- Have my site officially login to my STMP server and send once authenticated?
Can someone with experience in this area give me a suggestion?