On Fri, August 8, 2008 11:08, Alexey Eremenko wrote:
Now: question to the our dear Open-Source community - How is this possible ? 1. How is this possible for hijackers to hijack the mail source address?
*OK, you say SMTP spoof, but with GMail web interface, it is impossible to access email RAW code, to see exactly what was changed.
It is possible. I just checked. I use the Dutch interface of GMail so excuse me if I don't get all of the words right. Open the email. Next to the reply link is a drop-down menu. The second from the bottom is "Origineel weergeven" (display source?) This pops open a new window with the RAW email message.
2. How is it possible for GMail to distinguish between a real and a hijacked email ?
At which fields GMail is looking ?
My guess, based on the email headers from previous mails: SPF records. http://en.wikipedia.org/wiki/Sender_Policy_Framework -- Amedee -- To unsubscribe, e-mail: opensuse+unsubscribe@opensuse.org For additional commands, e-mail: opensuse+help@opensuse.org