Ever hear of BCC? John Tolmachoff Engineer/Consultant/Owner eServices For You > -----Original Message----- > From: Dan Vanden Bosch [mailto:dvandenbosch@xxxxxxxxxxxxxx] > Sent: Wednesday, January 12, 2005 7:37 AM > To: [ExchangeList] > Subject: [exchangelist] Question regarding spam - address spoofing > > http://www.MSExchange.org/ > > I have a user who received a spam message. However the user's address > wasn't in the To field. I checked the Internet Message Header and it > wasn't there either. The to field had a user who doesn't exist on our > domain. > > How would this message have gotten into the user's mailbox? > > Would this be an example of a directory harvest attack? > > ------------------------------------------------------ > List Archives: http://www.webelists.com/cgi/lyris.pl?enter=exchangelist > Exchange Newsletters: http://www.msexchange.org/pages/newsletter.asp > Exchange FAQ: http://www.msexchange.org/pages/larticle.asp?type=FAQ > ------------------------------------------------------ > Other Internet Software Marketing Sites: > World of Windows Networking: http://www.windowsnetworking.com > Leading Network Software Directory: http://www.serverfiles.com > No.1 ISA Server Resource Site: http://www.isaserver.org > Windows Security Resource Site: http://www.windowsecurity.com/ > Network Security Library: http://www.secinf.net/ > Windows 2000/NT Fax Solutions: http://www.ntfaxfaq.com > ------------------------------------------------------ > You are currently subscribed to this MSEXchange.org Discussion List as: > johnlist@xxxxxxxxxxxxxxxxxxx > To unsubscribe visit http://www.webelists.com/cgi/lyris.pl?enter=exchangelist > Report abuse to listadmin@xxxxxxxxxxxxxx