Re: From:name spoofing

2018-02-17 Thread Dave Warren
On 2018-02-17 01:11, Daniele Duca wrote: On 17/02/2018 00:41, John Hardin wrote: Not necessarily safe. If your MTA receives a message without a Message-ID, it is supposed to generate one. And if it does so, it will probably do so using your (recipient) domain... Isn't MID creation

Re: From:name spoofing

2018-02-17 Thread Michael Storz
Am 2018-02-17 00:46, schrieb Amir Caspi: On Feb 16, 2018, at 4:41 PM, John Hardin wrote: Not necessarily safe. If your MTA receives a message without a Message-ID, it is supposed to generate one. And if it does so, it will probably do so using your (recipient) domain...

Re: From:name spoofing

2018-02-17 Thread Michael Storz
Am 2018-02-17 00:41, schrieb John Hardin: On Fri, 16 Feb 2018, Michael Storz wrote: Am 2018-02-15 19:27, schrieb David Jones: We have covered this issue a few times recently on this list but I don't think anything definitive was ever decided or recommended to detect and block this sort of

Re: From:name spoofing

2018-02-17 Thread Daniele Duca
On 17/02/2018 00:41, John Hardin wrote: Not necessarily safe. If your MTA receives a message without a Message-ID, it is supposed to generate one. And if it does so, it will probably do so using your (recipient) domain... Isn't MID creation responsability of the MUA and not the MTA? If

Re: From:name spoofing

2018-02-16 Thread Amir Caspi
> On Feb 16, 2018, at 4:41 PM, John Hardin wrote: > > Not necessarily safe. If your MTA receives a message without a Message-ID, it > is supposed to generate one. And if it does so, it will probably do so using > your (recipient) domain... Wouldn't this also FP on messages

Re: From:name spoofing

2018-02-16 Thread John Hardin
On Fri, 16 Feb 2018, Michael Storz wrote: Am 2018-02-15 19:27, schrieb David Jones: We have covered this issue a few times recently on this list but I don't think anything definitive was ever decided or recommended to detect and block this sort of spoofing: https://pastebin.com/juXLD8vr This

Re: From:name spoofing

2018-02-16 Thread David Jones
On 02/16/2018 02:40 PM, Michael Storz wrote: Am 2018-02-15 19:27, schrieb David Jones: We have covered this issue a few times recently on this list but I don't think anything definitive was ever decided or recommended to detect and block this sort of spoofing: https://pastebin.com/juXLD8vr

Re: From:name spoofing

2018-02-16 Thread Michael Storz
Am 2018-02-15 19:27, schrieb David Jones: We have covered this issue a few times recently on this list but I don't think anything definitive was ever decided or recommended to detect and block this sort of spoofing: https://pastebin.com/juXLD8vr This appears to be a spoofed email from a

From:name spoofing

2018-02-15 Thread David Jones
We have covered this issue a few times recently on this list but I don't think anything definitive was ever decided or recommended to detect and block this sort of spoofing: https://pastebin.com/juXLD8vr This appears to be a spoofed email from a compromised account trying to be a known