Of course its important to check WHO is sending the email too, not just that its signed.
The email is obviously not from ICANN. Of course it authenticates correctly as the sender it claims to be, as that’s the truth. Authentication – checking that something is true and not false. For example, I claim who I am, and show ID to authenticate myself. Lack of Authentication means I can falsely claim to be someone else. But there is another important step: Authorization – checking that the claimed identity have the authority to do whatever its asking for. For example, Im authorized to pass the guard with my credentials. Lack of Authorization means I can simply use my own identity to enter the building without permission to do so. So a Authentication with lack of Authorization, means I can use my own real, validated and signed identity, to do something I should not do. And Authorization with lack of Authentication, means I can falsely claim someone else’s identity to use someone’s elses Authorization. Its important to combine them both. Both check that its Authenticated (someone hasn’t spoofed the email) but also Authorization (Make sure the email actually is sent by the person that you expect it to be from). And Authorization is something only the receiver of the email can do, as only he knows if the content of the email is relevant for the sender of the email. So it’s a fault of the receiver if he believes “ secri...@renam.md <mailto:secri...@renam.md> “ is actually ICANN. Från: Mark E. Jeftovic via mailop <mailop@mailop.org> Skickat: den 21 mars 2022 18:21 Till: mailop@mailop.org Ämne: Re: [mailop] Pretty convincing ICANN renewal notice making the rounds.. I said years ago, when these policies came out (WDRP and then WAP) that they would accomplish nothing other than to provide a gift-wrapped phishing mechanism. - mark On 2022-03-21 12:57 PM, Michael Peddemors via mailop wrote: Authenticated from FastHosts.. Source: Received: from mail.renam.md (HELO mail.renam.md) (81.180.84.189) _______________________________________________ mailop mailing list <mailto:mailop@mailop.org> mailop@mailop.org <https://list.mailop.org/listinfo/mailop> https://list.mailop.org/listinfo/mailop -- Mark E. Jeftovic <mailto:mar...@easydns.com> <mar...@easydns.com> Co-founder & CEO easyDNS Technologies Inc. +1-(416)-535-8672 ext 225 "Never expect a thing you do not want, and never desire a thing you do not expect." -- Bob Proctor
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
