Masaru Nomiya wrote:
This is the first time I have seen spam that has completely slipped through the sending domain verification.
[...] Authentication-Results: ORIGINATING; dkim=none; spf=pass (ORIGINATING: domain of noreply@opensuse.org designates 195.135.221.175 as permitted sender) smtp.mailfrom=noreply@opensuse.org; dmarc=pass (policy=none) header.from=opensuse.org [...]
I only receive spams that can be removed by spf filter. The spammer in question is highly skilled, isn't he?
No, not really. As has been discussed in this thread, we (openSUSE) permit anyone to send mails from @opensuse.org. In this case it is a phishing attempt, trying to get access to someone's email account. The mail is permitted by SPF and there is simply not enough information to otherwise identify as spam. -- Per Jessen, Zürich (17.2°C) Member, openSUSE Heroes (2016 - present) We're hiring - https://en.opensuse.org/openSUSE:Heroes