[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: fooling MTAs.
>
>>body and envelope
>
>Ok, I know that. And I can almost understand about the thing about the
>SMTP server friendlily warning about 'may be spoofed'. What I don't
>understand is, why does it accept the message if the From: domain is not
>the same as the IP of the incoming connection resolved by the name server
(hi peter)
1. reverse IP usually takes quite a long time.
2. i might use a computer that has no domain address related to it, so it'd
be
a complete waste of time.
3. i might use my connection on, say, actcom to send a message that i want
to be seen as if it was sent by my account at work. (is that at all clear?)
>?! Normally I would enforce dropping connections with the From: domain not
>resolving to the sender IP (or an accepted sender from an ACL).
>
but most mail readers(or is it the mta itself) would still be fooled by
fake
headers in the body of the message.
Eran
--
Whatever...
limbo@actcom.co.il