Tagbofa

December 21, 2017

Authentication is about Identity, not Virtue

1 Min read

21December

I just got some mail claiming to be from “Bank of America <secure@bofasecure.com>”. It passes SPF: Received-SPF: Pass (sender SPF authorized) identity=mailfrom; client-ip=185.235.176.160; helo=bofasecure.com; It passes DKIM: Authentication-Results: mx.wordtothewise.com (amavisd-new); dkim=pass (1024-bit key) header.d=bofasecure.com The visible RFC 822 From address is strictly...

Tagbofa

Authentication is about Identity, not Virtue

Recent Posts

No, Google doesn’t hate reactive design

DNS for white label authentication with SproutDNS

Deliverability Summit 2024

Anatomy of a Received header

Looking back, looking forward

Archives

Follow Us