On 5/3/19 4:47 PM, Kevin A. McGrail wrote:
Unless you have the private key matching the public key in DNS of a domain, that's the benefit of a DKIM signature.
I was referring to exactly that.As in the real ena.com being compromised and attackers taking a copy of their private key.
See recent reports of DNSpionage and Sea Turtle. (Cisco Talos)There's also the fact that DNSpionage attackers can modify the contents of DNS to fit their needs.
-- Grant. . . . unix || die
smime.p7s
Description: S/MIME Cryptographic Signature
