rconner Posted September 15, 2010 Share Posted September 15, 2010 I happened to notice this today, don't know whether it's the first time. Watchz spammer (tracking link) not only forges a header record to imply that the message was forwarded from an apparently-innocent IP address, he even forges an SPF lookup into the header to document that the fake IP is allowed to send mail on behalf of the fake domain. -- rick Link to comment Share on other sites More sharing options...
Farelf Posted September 15, 2010 Share Posted September 15, 2010 Pointless when it comes to SC or anyone with the time and knowledge to read the headers - yet there are tools out there and other users who would be fooled. The neat little IPNetInfo utility ploughs right on through the whole thing, as if the fake bits were real. Which is useful but potentially very misleading. I bet a lot of people would get thrown off the scent by such relatively unsophisticated tools used incautiously outside of their range of usefulness. That's probably sufficient edge to ensure/improve the viability of a mass-mailing operation. I really don't know, just guessing. Link to comment Share on other sites More sharing options...
Recommended Posts
Archived
This topic is now archived and is closed to further replies.