--On Monday, March 30, 2009 8:07 -0700 Marc Perkel <m...@perkel.com> wrote:
Actually such a list might be a good idea. A list of sites people phish for. The rule is as follows. If the from domain is on the list then that domain has to also appear somewhere in the received lines or it's spam. I think such a list would be useful.
Bad rule. First, some banks send some of their mail via third-party mail companies. This is covered by SPF in some cases. Second, some banks have multiple domains and don't take care to match the senders and hosts. A choice example is citibank.com, citicards.com, citigroup.com, citicorp.com. Another is americanexpress.com, aexp.com. I've seen others where banks merged but did not discontinue the fallen flag domain, so you get mail from Bank A from servers still named after totally different name Bank B. You'd think banks and credit card companies would be extremely careful about this stuff. Ha ha ha. They're not. Joseph Brennan Columbia University Information Technology
