On Mon, Mar 06, 2017 at 05:01:40PM +0100, Philip Hands wrote:
Christopher Clements <email@example.com> writes: ...That then provokes a small fraction of the victims to shout at us, because they don't know ho to read headers. That is what you are seeing.Are you saying that these messages were not sent to <firstname.lastname@example.org> and relayed to subscribers, but were instead forged to look like they were?[I note that I missed this question earlier.] Yes, the message that Illuminati got (which he subsequently replied to) almost certainly didn't go via any debian infrastructure at all (if the similar messages I got were anything to go by, which I think they are). However, because the spam meaasges are created by copying most of the headers from a genuine list mail, when you reply to such a message, it turns up on our lists, and looks like it might even be a reply to a real thread (until you notice that the body of the message they were replying to has never previously been seen on the list).
Wow. This is the exact reason I sign all my messages. Thanks for proving that I'm not _overly_ paranoid! -- GPG Key: 0769 AFCF 681E F61E 2137 F4CB 5044 1726 610D 5AE0 If this message isn't signed, I didn't send it.
Description: Digital signature