(OT) Google: "Somebody knows your password"
Volker Wysk
post at volker-wysk.de
Sat Aug 5 12:25:22 UTC 2017
Hi
I've inspected the mail I got from (presumable) google, more thoroughly.
There are a lot of binary data sections in the message header. In headers like
ARC-Seal, ARC-Message-Signature, DKIM-Signature.
The body has the content type "multipart/alternative", with two versions of
the message, one "text/plain" version, and one "text/html" one. The plain text
version is encoded in base64, and can't be read it from a text editor. I don't
know why they would do that, instead of writing it as plain text. The html
version is one unreadable block of text, which looks like html, but the lines
are all filled completely.
This explains the riddle of the mail being plain text or html.
This also means, that that message really originates from google, and is *not*
a phishing attack.
Regards
Volker
More information about the ubuntu-users
mailing list