nanog mailing list archives
Re: why IPv6 isn't ready for prime time, SMTP edition
From: Lamar Owen <lowen () pari edu>
Date: Wed, 26 Mar 2014 15:56:23 -0400
On 03/26/2014 02:59 PM, Valdis.Kletnieks () vt edu wrote:
You *do* realize that the OS vendor can't really do much about users who click on stuff they shouldn't, or reply to phishing emails, or most of the other ways people *actually* get pwned these days? Hint: Microsoft *tried* to fix this with UAC. The users rioted.Yep, I do realize that and I do remember the UAC 'riots.' But the OS vendor can make links that are clicked run in a sandbox and make said sandbox robust. A user clicking on an e-mail link should not be able to pwn the system. Period.
Most of the phishing e-mails I've sent don't have a valid reply-to, from, or return-path; replying to them is effectively impossible, and the linked/attached/inlined payload is the attack vector.
Current thread:
- Re: why IPv6 isn't ready for prime time, SMTP edition, (continued)
- Re: why IPv6 isn't ready for prime time, SMTP edition Tony Finch (Mar 26)
- Re: why IPv6 isn't ready for prime time, SMTP edition Paul Ferguson (Mar 26)
- Message not available
- Re: why IPv6 isn't ready for prime time, SMTP edition Larry Sheldon (Mar 26)
- Re: why IPv6 isn't ready for prime time, SMTP edition Barry Shein (Mar 26)
- Re: why IPv6 isn't ready for prime time, SMTP edition Matthew Petach (Mar 29)
- Re: why IPv6 isn't ready for prime time, SMTP edition John R. Levine (Mar 29)
- Re: why IPv6 isn't ready for prime time, SMTP edition Matthew Petach (Mar 30)
- Re: e-postage still doesn't work, why IPv6 isn't ready for prime time, SMTP edition John R. Levine (Mar 30)
- Re: why IPv6 isn't ready for prime time, SMTP edition Valdis . Kletnieks (Mar 30)
- Re: why IPv6 isn't ready for prime time, SMTP edition Valdis . Kletnieks (Mar 26)
- Re: why IPv6 isn't ready for prime time, SMTP edition Lamar Owen (Mar 26)
- Re: why IPv6 isn't ready for prime time, SMTP edition Lamar Owen (Mar 26)
- Re: why IPv6 isn't ready for prime time, SMTP edition Owen DeLong (Mar 26)
- Re: why IPv6 isn't ready for prime time, SMTP edition Owen DeLong (Mar 26)
- Re: WKBIs, was why IPv6 isn't ready for prime time, SMTP edition John Levine (Mar 27)
- Re: why IPv6 isn't ready for prime time, SMTP edition Barry Shein (Mar 27)
- Re: why IPv6 isn't ready for prime time, SMTP edition Owen DeLong (Mar 27)
- Re: why IPv6 isn't ready for prime time, SMTP edition Brandon Ross (Mar 27)
- Re: why IPv6 isn't ready for prime time, SMTP edition Owen DeLong (Mar 27)
- Re: why IPv6 isn't ready for prime time, SMTP edition Brandon Ross (Mar 28)
- Re: why IPv6 isn't ready for prime time, SMTP edition Owen DeLong (Mar 28)