On Fri, 2014-10-10 at 20:49 +0200, Benny Pedersen wrote: > On October 10, 2014 6:59:40 PM Martin Gregorie > > Benny: Yes they did - after all, how can they tell a bouncing message > > due to a fatfingered address from one that was crafted to bounce? > > the mailerdaemon is dkim signed, the attached msg is not signed, so its not > sent from yahoo imho > True enough: I thought you were asking if the bounce message had been signed, which it had - by Yahoo. As that message is only an attachment that originally came from elsewhere, I'd have thought a DKIM sig on it was irrelevant.
> > The examples I've seen so far have apparently been equity pumping scams. > > Is this also a common feature? > > Ahh note the isp send you a dsn back for undelivered, here the isp is > really yahoo, > Of course. I see it because the sender was forged, but I wouldn't call it Yahoo spam unless you can tell me how Yahoo is meant to tell a misspelt group name from one that's a deliberate mismatch. Martin
