It is possible that the SMPP client can use any header from the sender but most SMSCs enforce checks. If the carrier's SMSC doesn't enforce sender ID/MSISDN/shortcode, then yes, it is possible. You should report this to the operator's technical personnel ASAP. They should be able to grep the affected number and tell where the msg came from. ./bernard On Sat, Sep 11, 2010 at 8:21 PM, Dennis Kioko <dmbuvi@gmail.com> wrote:
Yesterday, my friend told me that their colleague had received a caller telling them that the had won Kshs. 100,000 on an ongoing Yu (Essar) competition. The caller then asked them for their Safaricom number (*sic) to Mpesa the winnings.
The guy received a message which dissapeared (Flash message). the caller called bask saying that they were experiencing difficulties and needed the guy to send them money to re-send the money properly.
The guy was greedy enough to believe the story and spend the rest of the employer afternoon trying to solve the riddle.
Raises 2 questions.
1. Can one fake the header of a message with Kannel to change where it appears to come from 2. What happens when a criminal: 1. steals a registered line and uses it to commit a crime. 2. uses a foreign line to commit a crime e.g Vodacom or Zain UG?
Meanwhile, a portion of the general population will always be greedy enough to meke them easy criminal prey, and criminals seem to earn enough margins from their crime to pull the above stunts
-- with Regards:
sitting next to engineers can have some positive feedback: http://gramware.blogspot.com/2010/08/positive-feedback.html
_______________________________________________ Skunkworks mailing list Skunkworks@lists.my.co.ke http://lists.my.co.ke/cgi-bin/mailman/listinfo/skunkworks ------------ Skunkworks Server donations spreadsheet
http://spreadsheets.google.com/ccc?key=0AopdHkqSqKL-dHlQVTMxU1VBdU1BSWJxdy1f... ------------ Skunkworks Rules http://my.co.ke/phpbb/viewtopic.php?f=24&t=94 ------------ Other services @ http://my.co.ke