Anti-spoofing
Email spoofing is the creating and sending of email with a forged sender address to intentionally mislead the recipient about its origin. This is a phishing technique often used to get a user to click a link and share their credentials or reply with sensitive information.
GFI MailSecurity offers functionality to help prevent email spoofing. There are two types of From addresses in an email, both of which can be spoofed:
- Envelope From: This is sent during the MAIL FROM command. Envelope From is straight forward to protect and is not commonly used for legitimate mail to spoof. This is generally protected using SPF (Sender Policy Framework).
- Mime-Encoded From: This is sent during the DATA command. It is not protected by any SMTPSimple Mail Transfer Protocol (SMTP) is an Internet standard used by GFI OneGuard for electronic mail (email) transmission. SMTP by default uses TCP port 25. mechanism and as such is open to spoofing.