Intended recipient
Roland Perry
lists at internetpolicyagency.com
Mon Sep 12 10:41:06 BST 2011
This man-in-the-mailbox attack brings a whole new perspective to the
"who is the intended recipient" debate.
<http://nakedsecurity.sophos.com/2011/09/12/missing-dots-from-email-
addresses-opens-20gb-data-leak>
Although there's a historical precedent - people sending faxes to a
typo-phone number. Which of course leads to those long legal disclaimers
which have been inherited on many corporate emails.
Would the activity of these researchers (or malicious counterparts) be
an interception in the UK; and as they've modified the public DNS to do
this, is it an interception on a public network and therefore criminal?
--
Roland Perry
More information about the ukcrypto
mailing list