Hi every body
my question may be stupid
and i think it must have already been asked
googlemail, for instance, takes the "return-path"
email address (which may be different than
the from address) in order to process its spf filter
let's imagine that this return-path is "forged"
and the from address is fake ...
an example !
return-path : toto@spamer.com
from : billg@microsoft.com
in our usual email client, we'll see this email sent by billg@microsoft.com,
however, the return-path has
been accepted by the spf filter
because this spamer (for phishing ...)
has a record
.spamer.com in txt "all his smtp servers"
is spf a good solution so ?
-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help@v2.listbox.com
my question may be stupid
and i think it must have already been asked
googlemail, for instance, takes the "return-path"
email address (which may be different than
the from address) in order to process its spf filter
let's imagine that this return-path is "forged"
and the from address is fake ...
an example !
return-path : toto@spamer.com
from : billg@microsoft.com
in our usual email client, we'll see this email sent by billg@microsoft.com,
however, the return-path has
been accepted by the spf filter
because this spamer (for phishing ...)
has a record
.spamer.com in txt "all his smtp servers"
is spf a good solution so ?
-------
Archives at http://archives.listbox.com/spf-help/current/
Donate! http://spf.pobox.com/donations.html
To unsubscribe, change your address, or temporarily deactivate your subscription,
please go to http://v2.listbox.com/member/?listname=spf-help@v2.listbox.com