On Tue 13/Dec/2022 18:06:55 +0100 Evan Burke wrote:
On Tue, Dec 13, 2022 at 8:45 AM Jim Fenton <[email protected]> wrote:
Is there anything that you can say about the types of domains whose
reputations are suffering as a result of replay attacks? Are they, for
example, small consumer mailbox providers, email sending providers, or
services that for some reason allow third parties to send (presumably
transactional) email through their servers?
Predominantly ESPs, but really anyone with substantial sending volume and
good reputation on the d= domain. ESPs seem to be the primary target
because they tend to have the highest sending volume, so the attacker can
send more replays before reputation and deliverability degrade.
Would someone please explain this trick to me, who never contacted an ESP?
From what I heard, I imagine someone opens new account at Mailchimp, say,
creates a campaign and sends a test message to herself, which she will later
replay. How come it works every time?
Best
Ale
--
_______________________________________________
Ietf-dkim mailing list
[email protected]
https://www.ietf.org/mailman/listinfo/ietf-dkim
