[LINK] Message from ASIC or not?
Michael Still
mikal at stillhq.com
Thu May 16 10:26:49 AEST 2013
I image SGE stands for "Secure Gateway Environment", the
Commonwealth's outsourced firewall environment.
Michael
On Thu, May 16, 2013 at 9:33 AM, Scott Howard <scott at doc.net.au> wrote:
> Domain Name: SGE.NET
> Registrant:
> Verizon Business Australia Pty Ltd
> 243 Northbourne Ave
> Lyneham
> Canberra, ACT 2602
> AU
>
> All of the (public) IP addresses listed are in Australia, and are
> registered to Verizon Business.
>
> I would have no doubt this is legitimate, with Verizon acting as a outgoing
> mail gateway for ASIC.
>
> To remove any doubt, lets look who handles ASIC's inbound email :
>
> $ dig mx asic.gov.au +short
> 10 asic-in-157.sge.net.
>
> So SGE/Verizon handle their incoming email, leaving zero doubt that your
> email is legitimate.
>
> Scott
>
>
>
>
>
> On Wed, May 15, 2013 at 4:22 PM, Jan Whitaker <jwhit at janwhitaker.com> wrote:
>
>> Linkers,
>>
>> I just renewed my business name because ASIC is now doing it instead
>> of the state of Victoria. That all appears legitimate based on a
>> paper letter I received from them. I did all the payments etc. online
>> as instructed.
>>
>> Today I got an email from them (??) that I'm always leary of because
>> there are so many spoofs. So instead I went to the ASIC account and
>> there are no records of messages being sent to me. So I looked at the
>> full header of the email I received (below) and it appears to be
>> coming not from Australia, which is always a clue that something
>> isn't legit. HOWEVER, given the amount of outsourcing for email that
>> is done by government agencies today (I went a few rounds with
>> AUSTRAC about this for a couple years, as well as advising other govt
>> agencies about this as a problem), it's hard to know what is real and
>> what isn't.
>>
>> The embedded links are using what appear to be ASIC addresses for the
>> hidden links.
>>
>> I've sent all the info to ASIC along with a question about their
>> practices, which was not easy, I'll tell ya. They won't accept a
>> plain text message and only allow 2000 characters in their message
>> field. They also do NOT accept emails themselves!
>>
>> Jan
>>
>> >Return-path: <ecs.no-reply at asic.gov.au>
>> >Envelope-to: jwhit at janwhitaker.com
>> >Delivery-date: Wed, 15 May 2013 17:18:08 -0400
>> >Received: from okinawa.sge.net ([152.91.65.130]:25116)
>> > by pearl.host-care.com with esmtps
>> (TLSv1:DHE-RSA-AES256-SHA:256)
>> > (Exim 4.80)
>> > (envelope-from <ecs.no-reply at asic.gov.au>)
>> > id 1Ucj4Z-0007Oe-F6
>> > for jwhit at janwhitaker.com; Wed, 15 May 2013 17:18:06 -0400
>> >Received: from valencia.bru.gwy (unknown [172.30.65.65])
>> > by okinawa.sge.net (Postfix) with ESMTP id AE049181CB
>> > for <jwhit at janwhitaker.com>; Wed, 15 May 2013 21:17:14 +0000
>> (UTC)
>> >Received: from valencia.bru.gwy (unknown [127.0.0.1])
>> > by IMSVA80 (Postfix) with ESMTP id 9151730799
>> > for <jwhit at janwhitaker.com>; Wed, 15 May 2013 21:17:14 +0000
>> (GMT)
>> >Received: from quark1.sge.net (unknown [152.91.9.198])
>> > by valencia.bru.gwy (Postfix) with ESMTP id 7D70B306B0
>> > for <jwhit at janwhitaker.com>; Wed, 15 May 2013 21:17:14 +0000
>> (GMT)
>> >Received: from mailgate2.asic.gov.au (unknown [10.11.2.20])
>> > by quark1.sge.net (Postfix) with ESMTP id 6CDAB367C39
>> > for <jwhit at janwhitaker.com>; Thu, 16 May 2013 07:17:13 +1000
>> (EST)
>>
>>
>> Melbourne, Victoria, Australia
>> jwhit at janwhitaker.com
>> blog: http://janwhitaker.com/jansblog/
>> business: http://www.janwhitaker.com
>>
>> Our truest response to the irrationality of the world is to paint or
>> sing or write, for only in such response do we find truth.
>> ~Madeline L'Engle, writer
>>
>> _ __________________ _
>> _______________________________________________
>> Link mailing list
>> Link at mailman.anu.edu.au
>> http://mailman.anu.edu.au/mailman/listinfo/link
>>
> _______________________________________________
> Link mailing list
> Link at mailman.anu.edu.au
> http://mailman.anu.edu.au/mailman/listinfo/link
More information about the Link
mailing list