Return to BSD News archive
Path: euryale.cc.adfa.oz.au!newshost.carno.net.au!harbinger.cc.monash.edu.au!munnari.OZ.AU!spool.mu.edu!howland.erols.net!www.nntp.primenet.com!nntp.primenet.com!ddsw1!news.mcs.net!news.cyberenet.net!news.sprintlink.net!news-pen-4.sprintlink.net!news.charm.net!news From: snowdog@charm.net (Sean Rolinson) Newsgroups: comp.unix.bsd.bsdi.misc Subject: Re: Write Secret Love Letters Date: Thu, 05 Sep 1996 16:36:43 GMT Organization: Charm Net Inc. Lines: 59 Message-ID: <50mvmg$1r0@canton.charm.net> References: <Dx0p2v.7rn@konark.ncst.ernet.in> <50di6r$jmd@agate.nbnet.nb.ca> <322C6FE0.41C67EA6@empac.com> <50igf6$9u4@agate.nbnet.nb.ca> Reply-To: snowdog@charm.net NNTP-Posting-Host: stimpy.charm.net X-Newsreader: Forte Free Agent 1.0.82 Hello, Richard was exactly right what he said about SMTP. Everything is in the log files, regardless of the HELO command it will also include the IP from which it is receiving the email as well as time,date, etc, etc. In fact, it usually echoes back to you the IP address or the DNS resolved name. It would be easily trackable with a few simple greps from a few logs. Now, IP spoofing adds a whole new light.. :) But that is not something that the newbie below, who is just learning to telnet to ports, is going to figure out. This is a good example of how education is declining in the world today. Hackers/crackers aren't what they used to be (not even the wannabe's)... :) Sorry for the off track post... Sean Rolinson snowdog@charm.net cavenerl@nbnet.nb.ca (Lance Cavener) once said: > On stardate Tue, 03 Sep 1996 10:50:24 -0700, Richard Heaton > <rheaton@empac.com> sent holographic email and wrote: > >Actually , you are both wrong. Sendmail (SMTP actually) HELO will accept a fake name in the handshake, but new versions > >of SMTP will try to identify the real identity with identd as well as reverse DNS lookups. It will put the real name > >into the Recived header (which not all mailers display). This is well known and has been around for a while. See p 243 > >of "SENDMAIL" , Costales,B., O'Reilly & Associates, 1993 . > Yeah, and that slows the hell out of my system. Its just like having > httpd do resolve DNS stuff.. > But still, the point is, if you send it, most mailreaders don't show > you all thoes useless headers, and if it does, most people don't look > at it (who cares right?), so most of the time you can accually get > away with that fakemail > >BTW Please try not to post crap like this to the net. If you are trying to do a service to the community by pointing out > >possible security holes, then fine, great ( maybe use the correct forum, though, like com.unix.security) . If you are > >trying to show us all what a great hacker (cracker in this case?) you are then keep it to the groups like alt.hackers > >where stupid human tricks like this might be appreciated. > As I said in my last post. Fakemailing is pure stupidity, and only > something a lame AOLer would do.. > -- > ,-------------------------------------------------------, > |Lance Cavener Systems Administrator | > |cavenerl@nbnet.nb.ca Senarius Inc. | > |admin@novacon.com | > |"Microsoft sent 54 programmers to Apple? You lie......"| > `-------------------------------------------------------'