Y
Hacker News
new
|
ask
|
show
|
jobs
by
lisper
4124 days ago
Find me someone in the State Department willing to be the recipient and I will happily conduct this experiment. Why do you think it would be any harder to spoof an email to the State Dept than anywhere else?
1 comments
______1
4124 days ago
http://en.wikipedia.org/wiki/Sender_Policy_Framework
link
rsanders
4124 days ago
http://mxtoolbox.com/SuperTool.aspx?action=spf%3astate.gov&r...
.
"No SPF records found"
Looks pretty spoofable.
link
lisper
4124 days ago
SPF only validates the envelope, not the From header. To do that you need DKIM, and I'd be surprised if Dept of State has implemented that.
link