Home page logo

basics logo Security Basics mailing list archives

Re: Re: detect ISP's legitimate SMTP server
From: Ansgar Wiechers <bugtraq () planetcobalt net>
Date: Thu, 10 Mar 2011 22:04:01 +0100

On 2011-03-09 Vedantam Sekhar wrote:
one site that gives all this information i know of is www.robtex.com.
It lists all the MX servers and NS servers for a company. However, no
gaurentee if that is the SMTP server ISP gives to its customers.
Chances are that the MX servers we find via dnslookups may be just
used for that ISP's employees.

MX records only ever specify the servers that *receive* mail for that
particular domain. They don't say anything about relayhosts at all.
Particularly with ISPs it's almost certain that the hosts specified in
the ISPs' MX records are *not* relayhosts.

Ansgar Wiechers
"All vulnerabilities deserve a public fear period prior to patches
becoming available."
--Jason Coombs on Bugtraq

Securing Apache Web Server with thawte Digital Certificate
In this guide we examine the importance of Apache-SSL and who needs an SSL certificate.  We look at how SSL works, how 
it benefits your company and how your customers can tell if a site is secure. You will find out how to test, purchase, 
install and use a thawte Digital Certificate on your Apache web server. Throughout, best practices for set-up are 
highlighted to help you ensure efficient ongoing management of your encryption keys and digital certificates.


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]