lists  /  announce  owl-users  owl-dev  john-users  john-dev  passwdqc-users  yescrypt  popa3d-users  /  oss-security  kernel-hardening  musl  sabotage  tlsify  passwords  /  crypt-dev  xvendor  /  Bugtraq  Full-Disclosure  linux-kernel  linux-netdev  linux-ext4  PHC 
Open Source and information security mailing list archives
Hash Suite: Windows password security audit tool. GUI, reports in PDF.
[<prev] [next>] [<thread-prev] [thread-next>] [day] [month] [year] [list]
From: prussell at (Paul Russell)

Rachael Treu wrote:

> Agreed, but I still forward to to make them aware, as they're
> likely to receive complaints from folks that briefly parse the headers.
> Then again, I'm a security engineer for a provider that is frequently
> deluged by such clamoring, so that, indeed, might be just me... ;)

As an email administrator, when I receive a spam complaint for a piece of dreck
that obviously did not originate from our network or pass through our servers,
I think "this doofus can't read headers", and I usually send a polite note
explaining that sender addresses can be forged and that the recipient ought to
send the complaint to someone who is actually in a position to do something
about it.

Except when the sender explicitly says "I can read headers, but have arrogantly
decided that you ought to see this anyway, because I'm sure you don't have
enough real problems to deal with", in which case I think "this doofus needs a 
dose of reality". Unfortunately, I'm not in a position to do anything about
that, either, so I just hit delete.

But then, it might just be me.

Paul Russell

Powered by blists - more mailing lists