Tagbofa

December 21, 2017

Authentication is about Identity, not Virtue

1 Min read

21December

I just got some mail claiming to be from “Bank of America <secure@bofasecure.com>”. It passes SPF: Received-SPF: Pass (sender SPF authorized) identity=mailfrom; client-ip=185.235.176.160; helo=bofasecure.com; It passes DKIM: Authentication-Results: mx.wordtothewise.com (amavisd-new); dkim=pass (1024-bit key) header.d=bofasecure.com The visible RFC 822 From address is strictly...

Tagbofa

Authentication is about Identity, not Virtue

Recent Posts

Validity Charging for Feedback Loop Emails

The trouble with CNAMEs

Unsubscribe vs Suppress

How to Unsubscribe

The Case of the 500-mile Email

Archives

Follow Us