ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Asrg] Lets Fix Mailing Lists

2003-03-08 22:06:57
from [Jim Youll] [Permanent Link] 
At 20:58 -0700 3/8/03, Vernon Schryver wrote:

 > From: "Chris Lewis" <clewis(_at_)nortelnetworks(_dot_)com>


 > If you believe as I do that the reason genuine mail forgery (as opposed
 > to using a legitimately owned Hotmail dropbox) fell off dramatically
 > a year or three ago is related to the laws criminalizing header forger,
 > then you don't need any crypto.

 We still get a heck of a lot of spam that claims to be from our own
 servers and/or users.  Thousands of spam blowback (spam forged in our
 domains bouncing back) too.


Again, for the umpteenth time, of course there is some header forgery,
but is it as much as most people claime?  I don't think so


As your message was arriving, so were three copies of this:

Return-Path: <stela_kofi(_at_)mail(_dot_)com>
Received: from aleve.media.mit.edu (aleve.media.mit.edu [18.85.2.171])
        by new.agentzero.com (8.12.8/8.12.8) with ESMTP id h294VZpP014377
        for 
<(_dot_)(_dot_)(_dot_)(_at_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)>; Sat, 8 
Mar 2003 23:31:35 -0500
Received: from afzhg1296.com ([213.181.64.35])
        by aleve.media.mit.edu (8.9.3/8.9.3/+ALEVE) with SMTP id XAA21073
        for 
<(_dot_)(_dot_)(_dot_)(_dot_)(_at_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)>; 
Sat, 8 Mar 2003 23:31:04 -0500 (EST)
Message-Id: 
<200303090431(_dot_)XAA21073(_at_)aleve(_dot_)media(_dot_)mit(_dot_)edu>
From: "STELLA KOFI" <stela_kofi(_at_)mail(_dot_)com>
Reply-To: stelakofi(_at_)ecplaza(_dot_)net
To: 
(_dot_)(_dot_)(_dot_)(_dot_)(_at_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)
Date: Sun, 9 Mar 2003 05:29:37 -0800
Subject: REPLY NEEDED
X-Priority: 1


To answer your questions from the last go-round:
        afzhg1296.com does not resolve
                nslookup afzhg1296.com
                *** can't find afzhg1296.com: Non-existent host/domain

        stela_kofi(_at_)mail(_dot_)com is an unknown user
                rcpt to:<stela_kofi(_at_)mail(_dot_)com>
                550 5.2.1 <stela_kofi(_at_)mail(_dot_)com>... UseR UnKnowN
this passed through MY filters because the previous hop (aleve.media) was trusted
the '1' priority was probably not appropriate (this is a Nigerian 419 scam)
So, everything claimed about this message was forged by the sender, except the reply-to, which, Nigerian authorities have made clear, will be received at stelakofi(_at_)wcplaza(_dot_)net by 
someone whose names is certainly not "Stella Kofi"



_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] Lets Fix Mailing Lists, tjacobs
Next by Date:  RE: [Asrg] Lets Fix Mailing Lists, Hallam-Baker, Phillip
Previous by Thread:  Re: [Asrg] Lets Fix Mailing Lists, Vernon Schryver
Next by Thread:  Re: [Asrg] Lets Fix Mailing Lists, Alan DeKok
Indexes:  [Date] [Thread] [Top] [All Lists]