SMTP Pen Test

From: Clone (c70n3@yahoo.co.in)
Date: Tue Dec 04 2007 - 01:50:28 EST

• Next message: Clone: "RE: Symantec SGS Gateway Firewall DoS vulnerability"
• Previous message: Serg B: "edit and replay network traffic question"
• Next in thread: Shreyas Zare: "Re: SMTP Pen Test"
• Reply: Shreyas Zare: "Re: SMTP Pen Test"
• Maybe reply: Clone: "Re: SMTP Pen Test"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Hi List,

What is the best solution for blocking email spoofing
from an SMTP server? I've come across so many cases
where it is possible to telnet into an SMTP server and
spoof emails from it. A few of those common conditions
are:
1. For an xyz.com SMTP server it is possible to send
emails from x@abc.com to a@xyz.com.
2. For an xyz.com SMTP server it is possible to send
emails from b@xyz.com to a@xyz.com.

SMTP AUTH looks to be the solution to me. Is there any
alternative?

Clone

      Explore your hobbies and interests. Go to http://in.promos.yahoo.com/groups

------------------------------------------------------------------------
This list is sponsored by: Cenzic

Need to secure your web apps NOW?
Cenzic finds more, "real" vulnerabilities fast.
Click to try it, buy it or download a solution FREE today!

http://www.cenzic.com/downloads
------------------------------------------------------------------------

• Next message: Clone: "RE: Symantec SGS Gateway Firewall DoS vulnerability"
• Previous message: Serg B: "edit and replay network traffic question"
• Next in thread: Shreyas Zare: "Re: SMTP Pen Test"
• Reply: Shreyas Zare: "Re: SMTP Pen Test"
• Maybe reply: Clone: "Re: SMTP Pen Test"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

This archive was generated by hypermail 2.1.7 : Sat Apr 12 2008 - 10:58:14 EDT