[Dshield] Can an SMTP Client be Spoofed?

Alonso Caballero Quezada / ReYDeS reydes at gmail.com
Mon Apr 24 21:27:26 GMT 2006


Saludos:

 Another example, in my e-mail  server:

 from=<andersdfdfto at connolleys.com>, size=9879, class=0, nrcpts=1,
msgid=<111001c667e5$95e5d73e$8d88f14e at gcnwicmkzgagho>, proto=SMTP,
daemon=MTA, relay=wsip-24-248-44-102.dc.dc.cox.net [24.248.44.102]

  #dig MX connolleys.com

connolleys.com.         10678   IN      MX      10 dpmail29.doteasy.com.

;; AUTHORITY SECTION:
connolleys.com.         10674   IN      NS      dns5.doteasy.com.
connolleys.com.         10674   IN      NS      dns6.doteasy.com.

;; ADDITIONAL SECTION:
dpmail29.doteasy.com.   1679    IN      A       65.61.209.29

  And relay in part of log is "relay=wsip-24-248-44-102.dc.dc.cox.net
[24.248.44.102]"

  Atte:

--
Alonso Caballero Quezada aka ReYDeS - ReYDeS at gmail.com
http://alonsocaballero.informatizate.net - LRU # 307242
http://www.SWP-scene.org



More information about the list mailing list