Home page logo

basics logo Security Basics mailing list archives

RE: email address "spoofed"
From: "Aditya, ALD [Aditya Lalit Deshmukh]" <aditya.deshmukh () online gateway technolabs net>
Date: Wed, 10 Mar 2004 15:32:14 +0530

Note that by now many SMTP servers reject mail unless they get *some*
answer on the reverse lookup; few spend much effort detecting spoofed 
HELO names, which often are made-up IP addresses or the name of the
receiving server (in hopes of bypassing any relay filters in place).

this is the case of the server on which the openssl mailing list run, the server will try to reverse resolve the domain 
if it does not get it responce it simply reject all the mail. this is good at cutting spam. but there is a problem who 
get his address assigned on a dhcp lease that expires every 8 hours, of course all the forward dns records are updates 
as soon as this occurs but the reverse dns my isp refuses to set them up. so i have to use some very convuluted method 
to send mail to openssl mailing list.

i think, the server should try to forward resolve the dns name that it recieves in helo and if it does not match then 
reject, because setting up the reverse is in the hands of whoever controls the dns server. many times this is not 
someone who would setup and update the reverse records 


Delivered using the Free Personal Edition of Mailtraq (www.mailtraq.com)

Ethical Hacking at the InfoSec Institute. Mention this ad and get $545 off
any course! All of our class sizes are guaranteed to be 10 students or less
to facilitate one-on-one interaction with one of our expert instructors.
Attend a course taught by an expert instructor with years of in-the-field
pen testing experience in our state of the art hacking lab. Master the skills
of an Ethical Hacker to better assess the security of your organization.
Visit us at:

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]