Well, for what it's worth, it is used, by some - I got really pissed off at some 419er back in 2003, and attempted to spoof the email header so the 419er wouldn't get the idea that my email was active; I put myself somewhere in Argentina. It got bounced, with a comment that the alleged header and the actual address didn't match.
So it's apparently possible; but if so, it would be greatly appreciated if it was one more obstacle for spam-phishers ... Wesley Parish On Wednesday 21 November 2007 10:07, Steve Holdoway wrote: > On Wed, 21 Nov 2007 09:53:52 +1300 > > Jim Cheetham <[EMAIL PROTECTED]> wrote: > > On Nov 20, 2007 10:52 PM, Steve Holdoway <[EMAIL PROTECTED]> wrote: > > > All headers bar the last one can be extremely simply faked, so they are > > > pretty useless to use to identify the email's provenance. Because of > > > this, some ISPs are clamping down on this. The Sender Policy Framework > > > ( eg http://www.openspf.org/ ) is an attempt to cut down on spam. This > > > defines where an email has to be sent from to be treated as valid. > > > > Surely SPF doesn't cut down on spam, it merely cuts down on address > > spoofing? > > > > Admittedly a lot of spam uses spoofed addresses at the moment ... but > > there's not a direct relationship _per se_ between an address-spoofed > > message and a spam message ... > > > > -jim > > OK, call it a beneficial side effect if you want. In real world terms it > does help. > > Steve -- Clinersterton beademung, with all of love - RIP James Blish ----- Gaul is quartered into three halves. Things which are impossible are equal to each other. Guerrilla warfare means up to their monkey tricks. Extracts from "Schoolboy Howlers" - the collective wisdom of the foolish. ----- Mau e ki, he aha te mea nui? You ask, what is the most important thing? Maku e ki, he tangata, he tangata, he tangata. I reply, it is people, it is people, it is people.
