On Thu, 28 Aug 2014, Daryl Stout wrote to MARK LEWIS:

 DS> Mark...

ML>you don't have one with itt-tech.edu, do you? i got a
ML>spam/phish/link with your name in the From field using an address of
ML>jkirk/at/mail.itt-tech.edu... i know it was a bad thing as soon as i 
ML>saw it... the question is whether or not the account is yours and if 
ML>it isn't who owns it so they can be told about their possible 
ML>infestation or access theft...

 DS>   Nope...never attended the place. So it likely was a spoof.

it was definitely a spoof which i already knew from the sending IP being in
the phillipines and not associated with that domain ;)

 DS> I have 2 step verification on my email accounts.

 :)

ML>whoever owns that account either knows both of us or they know 
ML>someone who knows both of us since they sent it to one of my private 
ML>accounts addressed to my online moniker and used your name... the 
ML>server that actually posted the thing is in the phillipines... that 
ML>was another clue that it was very illegitimate

 DS>   It's amazing the technology where hackers can spoof addresses. 

no technology needed, really... you just set the info in the header and
fire it off... it has always been this way since email was first
developed... this was because at that time people using the system were
honest and trustworthy... one didn't worry or even think about someone
spoofing this information...

 DS>   If anyone has a question about whether *I* actually sent an
 DS> email, they should contact me via netmail to 1:19/33

i used this route and got the confirmation i thought i'd get... it is all
good either way ;) 

)\/(ark

If you think it's expensive to hire a professional to do the job, wait
until you hire an amateur.

--- FMail/Win32 1.60