Paul Smith wrote:
It doesn't really even matter who the email is from if you're going to
click on links - all that matters is where those links go.
While not all bad things that can happen as a consequence of taking a fake
email to be real involve clicking links, I agree it would be very helpful if we
could somehow determine the legitimacy of links at the MTA/MUA level.
However, we can't. There are simply too many examples of bad links that match
the sender's address (paypai being just one of them) and even more examples of
'good' links that don't match, that in general you can't tell from just
analysing the URL.
Martijn.
________________________________
Virus Bulletin Ltd, The Pentagon, Abingdon, OX14 3YP, England.
Company Reg No: 2388295. VAT Reg No: GB 532 5598 33.
_______________________________________________
Asrg mailing list
Asrg(_at_)irtf(_dot_)org
http://www.irtf.org/mailman/listinfo/asrg