Larry Finch writes: > DMARC helped briefly, but spammers and phishers have already found > ways to defeat it. I have seen a surge in AOL-based phishing this > week. They simply use the AOL screen name in the comment in the > FROM field with a non-AOL address. As most mail clients don't > display the actual email address the recipient doesn't notice, and, > as the email goes to the spoofed screen name's contact list, it > looks legitimate.
Several people predicted that on this list ... well over a year ago when DMARC was first being discussed and From-corruption mitigations were being proposed. I doubt that's going to make an impression on AOL or Yahoo! (at least Yahoo! has a completely different standard for the decision). This-time-I'd-rather-be-President-than-be-right-ly y'rs, ------------------------------------------------------ Mailman-Users mailing list [email protected] https://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://wiki.list.org/x/AgA3 Security Policy: http://wiki.list.org/x/QIA9 Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ Unsubscribe: https://mail.python.org/mailman/options/mailman-users/archive%40jab.org
