Hey guys!
I've got a mail with a password reset link today. This was sent from my i-MSCP server and inside the email, there is a unknown domain name.
Code
- Delivered-To: [email protected]
- Received: by 10.60.69.193 with SMTP id g1csp14852oeu;
- Fri, 30 Aug 2013 00:37:11 -0700 (PDT)
- X-Received: by 10.180.75.205 with SMTP id e13mr1184353wiw.29.1377848231070;
- Fri, 30 Aug 2013 00:37:11 -0700 (PDT)
- Return-Path: <[email protected]>
- Received: from my.hostname.tld (IP-PTR. [MYSERVERIPHERE])
- by mx.google.com with ESMTP id 19si13578567wjz.155.1969.12.31.16.00.00;
- Fri, 30 Aug 2013 00:37:11 -0700 (PDT)
- Received-SPF: neutral (google.com: MYSERVERIPHERE is neither permitted nor denied by best guess record for domain of [email protected]) client-ip=MYSERVERIPHERE;
- Authentication-Results: mx.google.com;
- spf=neutral (google.com: MYSERVERIPHERE is neither permitted nor denied by best guess record for domain of [email protected]) [email protected];
- dmarc=fail (p=NONE dis=NONE) d=gmail.com
- Received: by my.hostname.tld (Postfix, from userid 1000)
- id F34221FAE5A8; Fri, 30 Aug 2013 09:36:39 +0200 (CEST)
- To: [email protected]
- Subject: =?UTF-8?B?w5pqIGplbHN6w7MgYWt0aXbDoWzDoXNhIEAgczEueGR3Lm1l?=
- X-PHP-Originating-Script: 1000:lostpassword-functions.php
- From: "Benjamin" <[email protected]>
- MIME-Version: 1.0
- Content-Type: text/plain; charset=utf-8
- Content-Transfer-Encoding: 8bit
- X-Mailer: i-MSCP lostpassword mailer
- Message-Id: <[email protected]>
- Date: Fri, 30 Aug 2013 09:36:39 +0200 (CEST)
- Dear Benjamin,
- Your new password activation link is below:
- http://septera.eu/lostpassword.php?key=a0bc16ceb9fc078a64bd8f744e9805cd
- ___________________________
- Benjamin @ my.hostname.tld
First of all, I do not know who owns septera.eu. I never seen that domain. And also this domain is not listed in my i-MSCP system.
So what to do?
This is a strange situation, because the domain A record points my IP address.
Better safe than sorry!
i-MSCP latest git master 22.08.2013 | Debian 6.0