Hello, In the Message; Subject : Re: Spam faking openSUSE Message-ID : <u1jp91$c76$1@saturn.local.net> Date & Time: Mon, 17 Apr 2023 17:40:17 +0200 [PJ] == Per Jessen <fakefakefake@opensuse.org> has written: PJ> Masaru Nomiya wrote: PJ> > This is the first time I have seen spam that has completely slipped PJ> > through the sending domain verification. PJ> > PJ> > [...] PJ> > Authentication-Results: ORIGINATING; PJ> > dkim=none; PJ> > spf=pass (ORIGINATING: domain of noreply@opensuse.org designates PJ> > 195.135.221.175 as permitted sender) PJ> > smtp.mailfrom=noreply@opensuse.org; dmarc=pass (policy=none) PJ> > header.from=opensuse.org PJ> > [...] PJ> > PJ> > I only receive spams that can be removed by spf filter. PJ> > The spammer in question is highly skilled, isn't he? I see that you are a staff member of the IT section, is that wrong? If so, just fine. PJ> No, not really. As has been discussed in this thread, we (openSUSE) PJ> permit anyone to send mails from @opensuse.org. I know what this is. I have seen more and more spoofed e-mails than I care to count. PJ> In this case it is a phishing attempt, trying to get access to PJ> someone's email account. I figured, so I just watched the header. PJ> The mail is permitted by SPF and there is simply not enough PJ> information to otherwise identify as spam. I can't understand you. In other words, I'm surprising that the spam is being processed as ham, even though the receiving server for this spam has not only SPF, but also SPF, DKIM, and DMARC, which are three layers of sending domain authentication to protect against spoofed mail. In particular, DMARC is the strongest sender domain authentication so far, isn't it. I would think that server administrators would treat this as a severe problem? Don't you? Regards. --- ┏━━┓彡 野宮 賢 mail-to: nomiya @ lake.dti.ne.jp ┃\/彡 ┗━━┛ "Tim Cook, the C.E.O. of Apple, said earlier this year that he would not let his nephew join social networks. Bill Gates banned cellphone until his children were teenagers, and Melinda Gates wrote that she wished they had waited even longer. Steve Jobs would not let his young children near iPads." -- The New York Times --