23. September 2021 14:32, "Christian Mack via mailop" <[email protected]> schrieb:
> Hello > > On 23.09.21 12:59, Geert Ijewski via mailop wrote: > >> On 23.09.21 11:45, Jaroslaw Rafa via mailop wrote: >>> Dnia 23.09.2021 o godz. 08:21:40 Sidsel Jensen via mailop pisze: >> >> Unfortunately we can only do this in our Webmail, we have no good way of >> sending this message to a user of a 3rd party mail client. If someone on >> this list has a good idea on how that can be accomplished with a good UX I >> am very eager to hear it :-) >>> Maybe just send mail to them? :) >> >> An email telling users to change their password because it has been >> compromised, will -- rightfully -- be seen as a phishing attempt; even >> if in this case it would be true. > > Yes, but it should be cryptographically signed by the domain owner, with > this users can see/check that it is a legitimate one. > Users who are competent enough to understand cryptographic signatures are probably a 1-digit percentage of the domain owner's user base, and they are probably much less likely to fall for phishing/trojans or re-use passwords across domains :-) Cheers, Hans-Martin _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
