![]() |
|
|
#1 |
|
"Ed Hall"
Dec 2009
Adirondack Mtns
11×347 Posts |
I see different prefixes on all kinds of .com addresses. Are these prefixes tied in to the xxxx.com even when at the end, or can they be spoofed in that manner?
Specific case: I often receive ads from roku@email.roku.com, but today I received one from roku@email1.roku.com with a "more info" link which I clicked on and it flashed, but did not bring up the expected info. I had not noticed the "1" originally, but did after the click failed (of course). Does the "1" within the address pose a possibility for someone to spoof emails from Roku? Further, the link was prefaced as . . . p s : / / l .email1 . roku . com / lots of ascii. Would that be a true roku.com address or could it go somewhere else? Thanks for any comments. . . Edit - additional info. All links on the page appear to have the same address - good chance it's a spoof? Last fiddled with by EdH on 2020-03-20 at 22:01 |
|
|
|
|
|
#2 |
|
Undefined
"The unspeakable one"
Jun 2006
My evil lair
183416 Posts |
The "from" portion of any email is completely arbitrary. Anyone can put anything there. There is no way to verify the origin of any email from just the headers.
Anyone could send you an email from president@state.gov, or anything else they care to put there. Last fiddled with by retina on 2020-03-20 at 22:06 |
|
|
|
|
|
#3 | |
|
"Ed Hall"
Dec 2009
Adirondack Mtns
11×347 Posts |
Quote:
Edit: Does that hold true for the links, as well? Last fiddled with by EdH on 2020-03-20 at 22:10 |
|
|
|
|
|
|
#4 |
|
Undefined
"The unspeakable one"
Jun 2006
My evil lair
22·1,549 Posts |
|
|
|
|
|
|
#5 | |
|
"Ed Hall"
Dec 2009
Adirondack Mtns
11×347 Posts |
Quote:
I'm figuring something got d/led, but nothing is in my d/l folder. Could I be lucky and the intended d/l didn't work? |
|
|
|
|
|
|
#6 | |
|
Undefined
"The unspeakable one"
Jun 2006
My evil lair
22·1,549 Posts |
Quote:
http://legit.looking.domain.com@hackers.evil.domain.cc/virus.cgi |
|
|
|
|
|
|
#7 |
|
∂2ω=0
Sep 2002
República de California
103·113 Posts |
Using Mac mail on my laptop, I simply hover the cursor over whichever link the e-mail wants me to click, then when the underlying address shows up as hovertext, compare to who ever is alleging they sent the message. Here's a screenshot of an example from yesterday - the weird Sender address already had me convinced it was a phish-mail, did the hovertext-trick just by way of confirming. But the better-quality phishes will have a realistically spoofed Sender-field, so the link-hovertext trick is crucial. (Note: in my screenshot, I had to move the cursor to select a subregion of the screen to capture, which left the cursor not-over-the-clickable-link ... the little hovertext rectangle appeared with cursor over the link):
Last fiddled with by ewmayer on 2020-03-20 at 22:31 |
|
|
|
|
|
#8 | |
|
"Ed Hall"
Dec 2009
Adirondack Mtns
11·347 Posts |
Quote:
Thanks for all the quick help. |
|
|
|
|
|
|
#9 | |
|
"Ed Hall"
Dec 2009
Adirondack Mtns
11×347 Posts |
Quote:
I've always been somewhat suspicious of the all the prefixes anyway, but everybody is going that route: mail.---.com, my.---.com, etc. --- .com. |
|
|
|
|
|
|
#10 | |
|
Undefined
"The unspeakable one"
Jun 2006
My evil lair
11000001101002 Posts |
Quote:
|
|
|
|
|
|
|
#11 |
|
∂2ω=0
Sep 2002
República de California
103·113 Posts |
I happen to be quite practiced at not clicking *any* link until having first checked where it goes via the hover technique. It seems this is especially difficult on smartphones, however, since there one use the same fingertip to navigate and then press-just-a-little-harder-to-open-link - one more reason I only use 'em for offline GIMPS crunching. :)
|
|
|
|
![]() |
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Water security | Nick | Soap Box | 78 | 2021-06-12 16:55 |
| Local network addresses | JHansen | Lounge | 2 | 2007-11-28 12:00 |
| Key fob security. | Xyzzy | Science & Technology | 13 | 2007-03-09 02:39 |
| Don't post other people's full email addresses | Unregistered | Forum Feedback | 2 | 2004-10-05 14:02 |
| Free throw away instant email addresses ( receive only ) | dsouza123 | Lounge | 3 | 2003-08-25 20:36 |