At 20:58 -0700 3/8/03, Vernon Schryver wrote:
> From: "Chris Lewis" <clewis(_at_)nortelnetworks(_dot_)com>
> If you believe as I do that the reason genuine mail forgery (as opposed
> to using a legitimately owned Hotmail dropbox) fell off dramatically
> a year or three ago is related to the laws criminalizing header forger,
> then you don't need any crypto.
We still get a heck of a lot of spam that claims to be from our own
servers and/or users. Thousands of spam blowback (spam forged in our
domains bouncing back) too.
Again, for the umpteenth time, of course there is some header forgery,
but is it as much as most people claime? I don't think so
As your message was arriving, so were three copies of this:
Return-Path: <stela_kofi(_at_)mail(_dot_)com>
Received: from aleve.media.mit.edu (aleve.media.mit.edu [18.85.2.171])
by new.agentzero.com (8.12.8/8.12.8) with ESMTP id h294VZpP014377
for
<(_dot_)(_dot_)(_dot_)(_at_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)>; Sat, 8
Mar 2003 23:31:35 -0500
Received: from afzhg1296.com ([213.181.64.35])
by aleve.media.mit.edu (8.9.3/8.9.3/+ALEVE) with SMTP id XAA21073
for
<(_dot_)(_dot_)(_dot_)(_dot_)(_at_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)>;
Sat, 8 Mar 2003 23:31:04 -0500 (EST)
Message-Id:
<200303090431(_dot_)XAA21073(_at_)aleve(_dot_)media(_dot_)mit(_dot_)edu>
From: "STELLA KOFI" <stela_kofi(_at_)mail(_dot_)com>
Reply-To: stelakofi(_at_)ecplaza(_dot_)net
To:
(_dot_)(_dot_)(_dot_)(_dot_)(_at_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)(_dot_)
Date: Sun, 9 Mar 2003 05:29:37 -0800
Subject: REPLY NEEDED
X-Priority: 1
To answer your questions from the last go-round:
afzhg1296.com does not resolve
nslookup afzhg1296.com
*** can't find afzhg1296.com: Non-existent host/domain
stela_kofi(_at_)mail(_dot_)com is an unknown user
rcpt to:<stela_kofi(_at_)mail(_dot_)com>
550 5.2.1 <stela_kofi(_at_)mail(_dot_)com>... UseR UnKnowN
this passed through MY filters because the previous hop
(aleve.media) was trusted
the '1' priority was probably not appropriate (this is a
Nigerian 419 scam)
So, everything claimed about this message was forged by the sender,
except the reply-to,
which, Nigerian authorities have made clear, will be received at
stelakofi(_at_)wcplaza(_dot_)net by
someone whose names is certainly not "Stella Kofi"
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg