bigjrocksit
IS-IT--Management
I have a question about something weird that was recently brought to my attention and I'm not able to find any information on the issue. Hopefully someone can help.
We have an account with Google Analytics that allows us to have reports emailed to us from the Analytics website. The emails come through just fine, but the problem is that the sender's email address that the reports come from shows to be an address of an internal user.
My question is this: How is this email able to be sent from Google to any internal user with the email address of this internal user? Even though the email address is listed as the "contact" email address on the Analytics website, there is no authentication information listed and to me this looks like we are wide open to spoofing.
I've emailed Google and their response was as follows: "Please note that what you see in the 'From'
address field is the display email address. Note that the emails are being sent from Google Analytics, however, the from address is marked as 'xxxxxx@xxxxx.com' to avoid the email being marked as spam. You can confirm this information by viewing the Header information for an emailed report."
I've viewed the header information and it only shows that it came from the internal email address. Shouldn't Exchange catch this as a spoofed address and block the email?
I'm really confused on this one. Any help is appreciated.
TIA- J
We have an account with Google Analytics that allows us to have reports emailed to us from the Analytics website. The emails come through just fine, but the problem is that the sender's email address that the reports come from shows to be an address of an internal user.
My question is this: How is this email able to be sent from Google to any internal user with the email address of this internal user? Even though the email address is listed as the "contact" email address on the Analytics website, there is no authentication information listed and to me this looks like we are wide open to spoofing.
I've emailed Google and their response was as follows: "Please note that what you see in the 'From'
address field is the display email address. Note that the emails are being sent from Google Analytics, however, the from address is marked as 'xxxxxx@xxxxx.com' to avoid the email being marked as spam. You can confirm this information by viewing the Header information for an emailed report."
I've viewed the header information and it only shows that it came from the internal email address. Shouldn't Exchange catch this as a spoofed address and block the email?
I'm really confused on this one. Any help is appreciated.
TIA- J