01189998819991197253@infosec.pub
on 23 Jan 2025 02:27
collapse
Looks to stem from default creds and SPF+all, both of which are amateur hour. In their defense, devices should not allow keeping default creds, and SPF should have never implemented the +all tag. Still, though. It’s 2025, not 2005. They should have known.
threaded - newest
Looks to stem from default creds and SPF+all, both of which are amateur hour. In their defense, devices should not allow keeping default creds, and SPF should have never implemented the +all tag. Still, though. It’s 2025, not 2005. They should have known.