If anyone hasn't figured it out yet, I didn't send this
crap to the list...
- ferg
No, actually, I thought you had just gone insane. =)
Relevant headers from original post (if they can be trusted):
Received: from s48.tribuneinteractive.com (s48.tribuneinteractive.com [12.130.90.15])
by fiji.merit.edu (Postfix) with ESMTP id 7DB831841
for <nanog@merit.edu>; Wed, 7 Sep 2005 01:16:27 -0400 (EDT)
Received: from s75 (s75.rc.trb [192.168.120.63])
by s48.tribuneinteractive.com (8.12.10/8.12.8) with ESMTP id j875GQHd000357
for <nanog@merit.edu>; Tue, 6 Sep 2005 22:16:26 -0700 (PDT)
Message-ID: <9904510.1126070186588.JavaMail.turbine@s75>
Perhaps someone "in authority" can track and kill, er, ban this luser?
Perhaps someone "in authority" can track and kill, er, ban
> this luser?
Which luser? The one who first thought it would be a good idea for
newspaper sites to have a "mail this article to someone" feature that
forges the sender address with no attempt to verify that the person
making the request has the right to use that address?
The challenge with this is doing a traceback of the requesting IP that
requested the article to be sent.
Best practice would be to include the requesting IP (i.e. the one which
does the HTTP request) in the dispatched mail as an X-header.
Mike
I had no idea it was a web site "mail this to a friend" thing. Just figured it was someone at that company.
Sorry for the noise.