[opensuse] Re: Email Security question: Hijacked email !!! was: Vista
- From: Joachim Schrod <jschrod@xxxxxxx>
- Date: Wed, 13 Aug 2008 22:50:47 +0200
Greg Freemyer wrote:
On Mon, Aug 11, 2008 at 8:07 AM, Joachim Schrod <jschrod@xxxxxxx> wrote:Alexey Eremenko wrote:
On Sat, Aug 9, 2008 at 12:37 AM, Kai Ponte <kai@xxxxxxxxxxxxxxxx> wrote:I thought GMail would scan for all suspecious emails,
On Friday 08 August 2008 06:28:09 am Alexey Eremenko wrote:
Kai: BTW: In your case even the Name was emulates correctly in GMail,
which means that GMail doesn't checks it at all.
No, that had nothing to do with gmail. It never went through gmail.
and according to logical something that arrived into my GMail, with
"From: al4321@xxxxxxxxx" - my email address, but never sent from my
account is spoof.
Why?
I have multiple email domains that I use for different purposes. Company,
open source activities, several project-specific ones, private, also even a
googlemail.com that I rarely use. (Please note: not different mboxes in one
domain, but different *domains*.)
When I send email, I do so all the time from my own workstation, using my
own mail server, and -- of course, using all those domain names, as the
context requires. So, of course it might happen that a valid email from
acm.org or googlemail.com did is not sent by their respective mail servers.
I don't know how the other anti-spoofing tools work, but with SPF you
would be required to add a DNS entry to each of the domains to show
your outbound SMTP server.
Yes, and that sums up in one sentence what's wrong with SPF.
It doesn't work for forwarded emails or off-line emails.
I have used my acm.org address for my open source activities since the early 90s and will continue to do so, since this email address will be available and stable for a long time. And, of course, I will not be able to add a DNS entry of my outbound servers to acm.org -- that's the Association for Computing Machinery, the world's leading organization for computer scientists.
You see, I'm active in open source development since 1982 -- though we didn't have that term then -- and around 1992 I went already through the pain that my Bitnet address was not valid any more, but it was distributed widely on many ftp sites and lots of people still wanted to reach me. (If you don't know, Bitnet was an IBM-centric email system that was available in the pre-90s to many universities that didn't have Internet then. I've got my first full-fledged Internet connection only as late as 1990.) With an email address from acm.org, this will not happen again, but it is neither a throwaway-address like those from gmail.com.
Joachim
--
=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-
Joachim Schrod Email: jschrod@xxxxxxx
Roedermark, Germany
--
To unsubscribe, e-mail: opensuse+unsubscribe@xxxxxxxxxxxx
For additional commands, e-mail: opensuse+help@xxxxxxxxxxxx
- References:
- Re: Email Security question: Hijacked email !!! was: [opensuse] Vista
- From: Alexey Eremenko
- Re: Email Security question: Hijacked email !!! was: [opensuse] Vista
- From: Alexey Eremenko
- Re: Email Security question: Hijacked email !!! was: [opensuse] Vista
- From: Alexey Eremenko
- Re: Email Security question: Hijacked email !!! was: [opensuse] Vista
- From: Kai Ponte
- [opensuse] Re: Email Security question: Hijacked email !!! was: Vista
- From: Joachim Schrod
- Re: Email Security question: Hijacked email !!! was: [opensuse] Vista
- Prev by Date: Re: [opensuse] External USB hard disks swapping mount-points
- Next by Date: Re: [opensuse] Lite-On and Linux
- Previous by thread: Re: [opensuse] Re: Email Security question: Hijacked email !!! was: Vista
- Next by thread: Re: Email Security question: Hijacked email !!! was: [opensuse] Vista
- Index(es):
Relevant Pages
|
