Lucian - Oddly, I'm not receiving your messages sent to this list... perhaps we're running into the dreaded list/forward corner case. Anyway, I'm only able to see the replies from Franck and Tim... so I've only seen what they've included in their replies.
Anyway, wearing my "PayPal" hat (emblazoned with a fancy "Ecosystem Security" logo)... Yes, PayPal knows about the issue you've identified. In fact, you're seeing in the feedback reports exactly the reason that we started working on DMARC. Spoofing used to be a common method to sent mail, but we learned that it leaves holes open for abuse. Fortunately, those holes are being closed in a series of rolling updates. It'll be a couple months before it's fully deployed to all business units and mail streams around the world. As you can imagine with a system as complex as PayPal's, it's not as easy as changing a lightbulb. Hope this helps... and thanks for the report. J. Trent Adams PayPal Ecosystem Security On 2/27/13 8:17 AM, Tim Draegen wrote: > On Feb 27, 2013, at 7:06 AM, Lucian Holland <[email protected] > <mailto:[email protected]>> wrote: >> Thanks! That's (in a way) good to know. Unfortunately I don't really >> have much in the way of contextual information since Google apps >> doesn't provide forensic failure reports for DMARC. On the other >> hand, if this is a genuine Paypal system in action, I can be >> confident that there's only one Paypal account under >> the symposion.co.uk <http://symposion.co.uk/> account (mine), so that >> should probably help them track it down. I have just had a >> confirmation that a refund I made has been issued via eCheque to >> someone, so I wonder if it was something to do with that. Do the >> relevant Paypal folks read this list or should I contact them >> independently? > > PayPal is watching. You're done! :-D > > =- Tim > > > > _______________________________________________ > dmarc-discuss mailing list > [email protected] > http://www.dmarc.org/mailman/listinfo/dmarc-discuss > > NOTE: Participating in this list means you agree to the DMARC Note Well terms > (http://www.dmarc.org/note_well.html) -- J. Trent Adams Profile: http://www.mediaslate.org/jtrentadams/ LinkedIN: http://www.linkedin.com/in/jtrentadams Twitter: http://twitter.com/jtrentadams _______________________________________________ dmarc-discuss mailing list [email protected] http://www.dmarc.org/mailman/listinfo/dmarc-discuss NOTE: Participating in this list means you agree to the DMARC Note Well terms (http://www.dmarc.org/note_well.html)
