Reply to post: Re: Spear phishing e-mails?

Return of the audio format wars and other money-making scams

Anonymous Coward
Anonymous Coward

Re: Spear phishing e-mails?

As an email admin, I can choose to only accept email from domains with correct SPF and/or domain keys.

The problem is that if I did this, about half an hour later I would have a VP in my office asking why customer "xyz..." can't send us email? I would reply (after some time wasting research) that their SPF record is missing or incorrect. I would then be told "but, we have to be able get email from them". I gave up a long time ago trying to keep us safe.

I understand that the idea of flagging email that didn't pass SPF/DKIM checks sounds like a good one, but users would still open them. Especially the executives here.

POST COMMENT House rules

Not a member of The Register? Create a new account here.

  • Enter your comment

  • Add an icon

Anonymous cowards cannot choose their icon