Well, the user changed his or her password, which would mean he or she suspects a beach. Why would he or she think that after our SPF discussion unless there were some evidence pointing in that direction?
In other news, quite a few e-mail servers have started blocking e-mail from unverifiable sources. It's good practice, since this spurs Yahoo! et al to turn SPF on. Mike Barnard <[email protected]> wrote: >On 9 December 2012 17:37, Benjamin Tayehanpour ><[email protected]>wrote: > >> Without SPF protection, I could send e-mails which look like they >> originate from your account, and the receiver will have no means of >> verifying the sender address since SPF isn't implemented. That's one >of >> many reasons why Yahoo! is a bad e-mail service provider. I'm not >saying we >> should ban all users of Yahoo!; I'm saying Yahoo! as a service >provider >> should be boycotted due to the numerous flaws in their service. >> >> That said, I'm glad you managed to change the password so you didn't >lose >> the account. Such things can be a real pain otherwise! Do you know >how the >> breach happened? >> >> >The "breach" will most likely happen again... I doubt that the person >actually got into his mailbox. Most spam from yahoo addresses tends to >be >from botnets that take advantage of the fact that one cannot >legitimately >check whether its actually yahoo who sent the email. > > >-- >Mike > >Of course, you might discount this possibility, but remember that one >in a >million chances happen 99% of the time. >------------------------------------------------------------ > > >------------------------------------------------------------------------ > >_______________________________________________ >The Uganda Linux User Group: http://linux.or.ug > >Send messages to this mailing list by addressing e-mails to: >[email protected] >Mailing list archives: http://www.mail-archive.com/[email protected]/ >Mailing list settings: http://kym.net/mailman/listinfo/lug >To unsubscribe: http://kym.net/mailman/options/lug > >The Uganda LUG mailing list is generously hosted by INFOCOM: >http://www.infocom.co.ug/ > >The above comments and data are owned by whoever posted them (including >attachments if any). The mailing list host is not responsible for them >in any way.
_______________________________________________ The Uganda Linux User Group: http://linux.or.ug Send messages to this mailing list by addressing e-mails to: [email protected] Mailing list archives: http://www.mail-archive.com/[email protected]/ Mailing list settings: http://kym.net/mailman/listinfo/lug To unsubscribe: http://kym.net/mailman/options/lug The Uganda LUG mailing list is generously hosted by INFOCOM: http://www.infocom.co.ug/ The above comments and data are owned by whoever posted them (including attachments if any). The mailing list host is not responsible for them in any way.
