Re: *Kicks Himself again*
Quote:
Originally posted by Badassatchu
Dog you got it all wrong ... my bad
The idea is that you can send an email to someone .... from any adress that you desire, i sent my younger sister one that 'apparently' came from santa@northpole.com now hopefully she should really like this (or she might just go schizo)
Two things:
That's a standard, correct response from a mail server. Let's say that your ISP's mail server is running at a.net. I can telnet into *YOUR* ISP's mail server by going
telnet a.net 25
and do something like:
helo a.net
250 String Which varies from mail server to mail server
mail from: <santa.claus@northpole.net>
250 Sender OK (or other such similar acceptance)
Rcpt to: <you@a.net>
250 Recipient OK (etc..)
data
354 Type your message ending with "."
From: <santa.claus@northpole.net>
Subject: Merry Christmas & Happy New Year
Hi Billy,
You've been such a good boy this year, Santa's going to get you [insert name of product here] just like you wanted.
Santa
.
250 Message Accepted for Delivery
Server responses in Italics, my typing in bold.
This is all fine and dandy, and actually how mail servers have to work in order for email to function. I've never seen an ISP with a 'password protected' port 25. It's almost always host-based (for a reason).
The second thing is that while this is great and all, you can still track the IP of the sender from most well-behaved mail servers by looking at the extended headers in the email.
There is usually a line that reads:
Received: from my.host.name.com by mail.a.net for <you@a.net>
From well-behaved mail servers (qmail and Sendmail both behave this way by default IIRC), this reveals the ip address of the machine used to post it, so it's not smart to use this type of thing to send death threats.
Really all that's going on here is that you're connecting to the mail server as your client would and doing the same things.
Quote:
The I.P i posted is of a mail server run by a ***** who claimed his free email server to be safe as houses and proceeded to shout obcenities at me ... yet you can login without a password through port 25? (no fire wall)
If it happens to be the mail server at your sister's ISP, then sure it will work. If not, and the guy's server is sitting there as an open relay, then I suggest you have some fun sending him emails from himself.
Peruse the BOFH files here for some ideas.
Isn't SMTP fun? :D