republican-creole
Search:  

 
theme to black backgroundlet page decide theme
HomeFind ServiceReviewsISP NewsFAQsForumsToolsDatabaseAbout 
 
   All ForumsHot TopicsGallery






how-to block ads


 
Forums » E-mail Tax » how will this be done?
Search Topic:
 Share Topic:
RSS topic:
toggle:
flat / full
normal / watch
Post a:
Post a:
"advocating" »
« What about the nasty virus  
AuthorAll Replies

sdd75

join:2001-10-14
Maryville, TN

reply to daniyel
Re: how will this be done?

Email accounts aren't really 'zombied' or 'hijack' per say, but are more accurately 'spoofed'. The problem with SMTP is it is a Simple Mail Transport Protocol. All it does is relay. Initially SMTP has no security built in to it. In a sense I guess the protocol still doesn't. Some servers can be configured to mimic security. They can be set to only relay if either the source or the destination is within a certain ip address range. (That's why some ISP's require you to use an alternate SMTP server if you connect off their network.) Other tricks include requiring users on the local network to authenticate or use encryption,(ESMTP) but allow incoming to relay to the pop server without such security. This lack of security is compounded by the fact that SMTP is just as much a client as a server in the traditional client-server relationship. The way it works is the client sends a message to an SMTP server (presumably source ISP), which in turn sends the message along to another SMTP server (presumably destination ISP), then to a MTA (typically a POP or IMAP server) which stores the message for later retrieval. (notice SMTP did not store the message. That's how simple it is.) This simplicity is why a virus can send email without your account's user name and password. The code is compact, and authentication isn't implemented. The SMTP server doesn't distinguish one client from another. In fact, the only way it can tell it's a client versus another SMTP server is if the source is from the local network or not. Beyond that, SMTP simply trusts the information is accurate. That said, what's to stop someone else from sending an email via SMTP and simply lying about the source email address? The answer is nothing. Consider this simple test of an SMTP server:

telnet smtp.yourisp.net 25
helo yourisp.net
mail from: myname@yourisp.net
rcpt to: someoneelse@anotherisp.com
data

This is just a test.
.
quit

Why would someone lie, and put your email address there? Simply put, they are trying to bypass another security feature implemented by isp's. Some isp's are performing a reverse-dns to query if the source domain actually exists before relaying. If a spammer uses an account from that domain, then it exists. Then all of the messages sent to an invalid account are returned by the local ISP to the address spoofed. Now your inbox is 'spammed' with undeliverable messages you didn't send. (email viruses will also cause this.)
to forum · permalink · · 2003-11-19 18:35:44 · Reply to this
Forums » E-mail Tax"advocating" »
« What about the nasty virus  

Saturday, 05-Dec 01:49:37 Terms of Use | Privacy Policy | Hosting by www.nac.net - DSL,Hosting & Co-lo | feedback | contact
over 10 years online! © 1999-2009 dslreports.com.
page compression OFF
Most commented news this week
· [163] Comcast Releasing Promised Usage Meter
· [145] Avast Antivirus Has Gone Mad
· [126] Comcast Makes NBC Universal Acquisition Official
· [104] Graduate Student Unveils Sprint's GPS Sharing With Feds
· [101] Google Invades ISP, OpenDNS Turf With Google Public DNS
· [83] FCC Ponders Moving From PSTN To IP Voice
· [83] The Bandwidth Hog Does Not Exist
· [81] Latest Consumer Reports Survey Not Kind To AT&T
· [74] Sprint Defuses GPS Privacy Media Bomb
· [70] Baltimore To Ban Lazy Cable Installs
Most people now reading
· False positive in Avast! or is it real? [Security]
· DNS options, what are YOU using? [TekSavvy]
· Evading throttling with uTP / uTorrent 1.9a [TekSavvy]
· Windows 7 boot manager editing questions [Microsoft Help]
· 3.x Feral Druid - Bear Tanking Guide [World of Warcraft]
· Google takes aim at browser redirection [Security]
· Farewell [Bell Canada]
· Sun Releases Update 17 for Java SE 6 [Security]
· Connecting to Google Voice Via SIP [VOIP Tech Chat]
· I finally jumped off the Windows ship! [All Things Macintosh]