On Mon, 2009-01-26 at 16:54 -0600, Grant Taylor wrote:
> It will be *VERY* difficult for me to spoof an SMTP envelope sender for
> Microsoft with out SPF filters (and the likes) detecting it and acting
> accordingly.
My experience with SPF is that it's not at this point widely enough
deployed so
On 01/26/09 16:51, Lindsay Haisley wrote:
It's no more difficult to spoof the From header than it is to spoof
the envelope sender address, but at least this way, if it happens
again, you'll more easily see which header got the spam through and
not have to go digging for it.
I'll agree it's al
On Mon, 2009-01-26 at 15:44 -0700, Steve Lindemann wrote:
> Thanks... I like that solution much more better 8^)
It's no more difficult to spoof the From header than it is to spoof the
envelope sender address, but at least this way, if it happens again,
you'll more easily see which header got the s
Lindsay Haisley wrote:
On Mon, 2009-01-26 at 15:26 -0700, Steve Lindemann wrote:
Thanks! Got it! They spoofed a legitimate list member on the
Return-Path:, which also showed up on the first ("From ") message header
line.
Both of these reflect the envelope sender address used in the SMTP
dial
