replay attacks

Spam Resource: DKIM replay attacks and what to do about them

Dec

DKIM replay attacks are one of the new big things lately, and they work like this: Take a DKIM signed email message, and re-send it to a billion other people. Maybe add another header (or change the subject, if the signature doesn’t cover the subject), or maybe change nothing. Just take that message and randomly spam a million people. The mail will pass DKIM authentication checks, as long as it is sufficiently unchanged, and thus it authenticates as if it were a legitimate email message. Even if you weren’t the original intended recipient. Even if it was sent only to one person but then recent to a million other people, just to annoy them. That’s not a good thing — it can damage a sender’s domain reputation, because people unhappy about that unwanted mail will report it as spam, and spam reporting processing mechanisms will tie it back to the

Posted in: Industry News , Spam Resource ,

Tags: Al Iverson , DKIM , email security , replay attacks , Spam Resource ,

Login/Sign Up

Search

Menu

replay attacks

Email Service Providers Handbook

SPAMASSASSIN RULES

SMTP COMMANDS & REPLY CODES

Free DNS Tool

Deliverability Glossary