Isn't *.onmicrosoft.com actually valid? Though typically not used, I'm
fairly certain it's interchangeable for the user's domain on an Office
365 subscription. I was trying to find something to validate my memory
and I think this backs it:
https://learn.microsoft.com/en-us/microsoft-365/admin/setup/domains-faq?view=o365-worldwide
On 2022-11-08 16:28, MRob via mailop wrote:
Hello,
Microsoft doesn't limit FROM header spoof? I saw message like:
Envelope from: example.user207@<redacted>.onmicrosoft.com
To: <address on my domain>
From: support@<fake domain made from *username* of recipient>
For example if [email protected] then [email protected]
Is too complicated for microsoft check the FROM header belong to the
senders account?
Is best always reject mail from <anything>.onmicrosoft.com?
_______________________________________________
mailop mailing list
[email protected]
https://list.mailop.org/listinfo/mailop
_______________________________________________
mailop mailing list
[email protected]
https://list.mailop.org/listinfo/mailop
