Internet and e-mail policy and practice
including Notes on Internet E-mail


2012
Months
Feb

Click the comments link on any story to see comments or add your own.


Subscribe to this blog


RSS feed


Home

18 Feb 2012

How spamtraps work, maybe Email

This, uh, fell off a truck. I cannot vouch for its authenticity.

> Who wants to answer this one?
Oh, what the heck, tell him about it.
::---- snip ----

See more ...


  posted at: 15:15 :: permanent link to this entry :: 1 comments
Stable link is https://jl.ly/Email/traps.html

07 Feb 2012

Phish or Fair? Internet
It shouldn't be a big surprise to hear that phishing is a big problem for banks. Criminals send email pretending to be a bank, and set up web sites that look a lot like a bank. One reason that phishing is possible is that e-mail has no built in security, so that if a mail message comes in purporting to be from, say, accounts@bankofamerica.com, there's no easy way to tell whether the message is really from bankofamerica.com, or from a crook. Mail authentication schemes like
DKIM and the new dmarc.org group use cryptographic signatures to help authenticate mail and prove that it really is from who it purports to be from. So, if the mail can authenticate the sender, the phishing problem goes away, right?

See more ...


  posted at: 02:36 :: permanent link to this entry :: 1 comments
Stable link is https://jl.ly/Internet/porf.html

02 Feb 2012

World notices that Verisign said three months ago that they had a security breach two years ago Internet

The trade press is abuzz today with reports about a security breach at Verisign. While a security breach at the company that runs .COM, .NET, and does the mechanical parts of managing the DNS root is interesting, this shouldn't be news, at least, not now.

Since Verisign is a public company, they file a financial report called a 10-Q with the SEC every quarter. According to the SEC's web site, Verisign filed their 10-Q for June through September 2011 on October 28th. where it's been available to the public ever since.

See more ...


  posted at: 20:45 :: permanent link to this entry :: 1 comments
Stable link is https://jl.ly/Internet/vrsnbreach.html

Topics


My other sites

Who is this guy?

Airline ticket info

Taughannock Networks

Other blogs

CAUCE
It turns out you don’t need a license to hunt for spam.
201 days ago

A keen grasp of the obvious
Italian Apple Cake
759 days ago

Related sites

Coalition Against Unsolicited Commercial E-mail

Network Abuse Clearinghouse

My Mastodon feed



© 2005-2024 John R. Levine.
CAN SPAM address harvesting notice: the operator of this website will not give, sell, or otherwise transfer addresses maintained by this website to any other party for the purposes of initiating, or enabling others to initiate, electronic mail messages.