On Thu, 2008-06-05 at 13:08 +0200, Benny Pedersen wrote: > On Thu, June 5, 2008 12:53, ram wrote: > > > Phishers sometimes just forge the Header from & not the Env-From. > > You would not get a SPF_FAIL, because there was nothing wrong with the > > sender address. But the end users are usually are not trained to look at > > the real sender. > > good banks have equal envelope sender and from, else i blame my bank :-) > > why care about phishers that fails to do it right ? >
The phisher deliberately "fails to do it right" and forges only the header from:. It is for us to catch them
