Risks of bouncing e-mail
Results 1 to 7 of 7

Thread: Risks of bouncing e-mail

  1. #1
    Senior Member
    Join Date
    Nov 2001
    Posts
    4,786

    Risks of bouncing e-mail

    many come here wanting to learn how to forge email. its sometimes fun but can be very dangerous.

    http://catless.ncl.ac.uk/Risks/21.89.html#subj9

    The Strasbourg newspaper "Dernières Nouvelles d'Alsace" reports (in French)
    an interesting case of e-mail forgery. The exact circumstances are not yet
    clear, but it appears that: - An e-mail was sent from the account of the mayor, telling members of a
    city commission to vote in favour of a plan to extend a local hypermarket.
    The official, public policy of the city council and the mayor is to oppose
    this extension.
    - The mail to one member of the commission bounced, because the recipient's
    name was incorrectly spelled.
    - An assistant to mayor Fabienne Keller, who has access to her mailbox,
    noticed the "undeliverable" reply and determined that the mail had been sent
    at a time when the mayor could not have sent it.
    - The general manager of the hypermarket is under police investigation for
    illegal entry into a computer system, forgery, use of forged documents, and
    attempted fraud. Original texts in French for those interested: > http://www.dna.fr/cgi/dna/motk/idxli...200201&num=180
    > 41610&m1=keller&m2=mairie&m3=
    http://www.dna.fr/cgi/dna/motk/idxli...0201&num=19049
    910&m1=keller&m2=mairie&m3=

    I suppose the RISK is that if you're going to pretend to be someone else,
    make sure you can spell !
    Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”
    Share on Google+

  2. #2
    Senior Member
    Join Date
    Jan 2002
    Posts
    206
    There is a moral in this post somewhere, but I cant work it out...

    Share on Google+

  3. #3
    Senior Member
    Join Date
    Jul 2001
    Posts
    420
    I thinking spoofing is one of those things that you should never use in the manner described (maybe to play a prank on a friend). I am certain the description given above is illeagal, if it isn't will be shortly.

    Cheers,
    -D
    If you spend more on coffee than on IT security, you will be hacked. What\'s more, you deserve to be hacked.
    -- former White House cybersecurity adviser Richard Clarke
    Share on Google+

  4. #4
    Senior Member
    Join Date
    Nov 2001
    Posts
    4,786
    ==============
    There is a moral in this post somewhere, but I cant work it out...
    ===============

    yeah, there is. i just wanted to point out to newbies they need to be careful, people do get in trouble doing this. its all fun til some one looses an eye.
    Bukhari:V3B48N826 “The Prophet said, ‘Isn’t the witness of a woman equal to half of that of a man?’ The women said, ‘Yes.’ He said, ‘This is because of the deficiency of a woman’s mind.’”
    Share on Google+

  5. #5
    Leftie Linux Lover the_JinX's Avatar
    Join Date
    Nov 2001
    Location
    Beverwijk Netherlands
    Posts
    2,534
    Tedob1 so true...
    ASCII stupid question, get a stupid ANSI.
    When in Russia, pet a PETSCII.

    Get your ass over to SLAYRadio the best station for C64 Remixes !
    Share on Google+

  6. #6
    Senior Member
    Join Date
    Jan 2002
    Posts
    883
    Two things: Telnet and Open Mail Server

    Don't try this at home KiDDieS. Goes to show what happens when you are doing the wrong thing with a puter and you don't have a copy of Websters around...
    The COOKIE TUX lives!!!!
    Windows NT crashed,I am the Blue Screen of Death.
    No one hears your screams.

    Share on Google+

  7. #7
    Old-Fogey:Addicts founder Terr's Avatar
    Join Date
    Aug 2001
    Location
    Seattle, WA
    Posts
    2,007
    Yeah... I got mass-spammed with this one spam message... but the idiot user hadn't used a mail relay that DIDN'T insert his IP address into the message source. It was sort of funny, to think that he plastered evidence of his crime practically everywhere multiple times... He probably never even checked the unsecured server other than to make sure it sent stuff for him.

    Can you say public-key-crypto signing, people?
    [HvC]Terr: L33T Technical Proficiency
    Share on Google+

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •