[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: fooling MTAs.






>
>>body and envelope
>
>Ok, I know that. And I can almost understand about the thing about the
>SMTP server friendlily warning about 'may be spoofed'. What I don't
>understand is, why does it accept the message if the From: domain is not
>the same as the IP of the incoming connection resolved by the name server

(hi peter)
1. reverse IP usually takes quite a long time.
2. i might use a computer that has no domain address related to it, so it'd
be
a complete waste of time.
3. i might use my connection on, say, actcom to send a message that i want
to be seen as if it was sent by my account at work. (is that at all clear?)

>?! Normally I would enforce dropping connections with the From: domain not
>resolving to the sender IP (or an accepted sender from an ACL).
>

but most mail readers(or is it the mta itself)  would still be fooled by
fake
 headers in the body of the message.

Eran
--
Whatever...
limbo@actcom.co.il