Jump to content

Pointless toil


rconner
 Share

Recommended Posts

I happened to notice this today, don't know whether it's the first time. Watchz spammer (tracking link) not only forges a header record to imply that the message was forwarded from an apparently-innocent IP address, he even forges an SPF lookup into the header to document that the fake IP is allowed to send mail on behalf of the fake domain.

-- rick

Link to comment
Share on other sites

Pointless when it comes to SC or anyone with the time and knowledge to read the headers - yet there are tools out there and other users who would be fooled. The neat little IPNetInfo utility ploughs right on through the whole thing, as if the fake bits were real. Which is useful but potentially very misleading. I bet a lot of people would get thrown off the scent by such relatively unsophisticated tools used incautiously outside of their range of usefulness. That's probably sufficient edge to ensure/improve the viability of a mass-mailing operation.

I really don't know, just guessing.

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

×
×
  • Create New...