LWN.net Logo

Not logged in

Log in now

Create an account

Subscribe to LWN

Recent Features

Book review: Open Advice

Linux support for ARM big.LITTLE

LWN.net Weekly Edition for February 9, 2012

XBMC 11 "Eden"

LWN.net Weekly Edition for February 2, 2012

Printable page
Weekly edition Kernel Security Distributions Contact Us Search
Archives Calendar Subscribe Write for LWN LWN.net FAQ Sponsors

Fake Red Hat security update

Fake Red Hat security update

Posted Oct 25, 2004 18:25 UTC (Mon) by admcd (subscriber, #5415)
In reply to: Fake Red Hat security update by csm1975
Parent article: Fake Red Hat security update

Would SPF have prevented this?

What if the e-mail came from the fedora-redhat.com domain given in the e-mail? The owner of that fake domain could even have published SPF records for it, if they really wanted to.

(Log in to post comments)

Fake Red Hat security update

Posted Oct 25, 2004 19:45 UTC (Mon) by csm1975 (guest, #15864) [Link]

My SPF config would have...

If it had come from the fedora-whatever site it would not have but that wouldn't have been much of a phishing attempt would it?

Fake Red Hat security update

Posted Oct 26, 2004 7:35 UTC (Tue) by admcd (subscriber, #5415) [Link]

In which case you wouldn't have clicked on the www.fedora-redhat.com link. So SPF would have made no difference either way.

Copyright © 2012, Eklektix, Inc.
Comments and public postings are copyrighted by their creators.
Linux is a registered trademark of Linus Torvalds