Solved

Query regarding message spoofing

Posted on 2008-10-13
1
265 Views
Last Modified: 2013-11-30
Hi

We seem to be receiving a lot of SPAM mail, particularly messages that are spoofed.

They have the characteristics;

From: SPOOFED
Return-Path: SPOOFED
Message-ID: #####@servername.com

Couple of questions I was hoping someone could help me with;

a) I understand it is quite possible to spoof the FROM:, but can the Return-Path (i.e. MAIL FROM:) be spoofed as well?

b) Can the source IP address of the mails be spoofed?

c) Can the Message-ID servername be spoofed?

Hope someone can help!
0
Comment
Question by:kam_uk
1 Comment
 
LVL 34

Accepted Solution

by:
PsiCop earned 500 total points
ID: 22707164
a) Yes. "Return-path" is just another message header. It is easy to spoof as any other message header, like "From"

b) Yes and no. Yes, the spammer may include spoofed headers with false or misleading IP information. No, in that when YOUR mail server adds a "Received: from" header, it will have accurate IP information for the host that connected to it.

c) Yes. Just like "Return-path", it's just another message header.
0

Featured Post

Is Your Active Directory as Secure as You Think?

More than 75% of all records are compromised because of the loss or theft of a privileged credential. Experts have been exploring Active Directory infrastructure to identify key threats and establish best practices for keeping data safe. Attend this month’s webinar to learn more.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Suggested Solutions

Title # Comments Views Activity
as logs exchange 2010 7 14
exchange 4 46
Troubleshooting config for mail flow on ASA 5525 3 38
How safe is emailing credit card information? 10 45
Lotus Notes – formerly IBM Notes – is an email client application, while IBM Domino (earlier Lotus Domino) is an email server. The client possesses a set of features that are even more advanced as compared to that of Outlook. Likewise, IBM Domino is…
We are happy to announce a brand new addition to our line of acclaimed email signature management products – CodeTwo Email Signatures for Office 365.
In this video we show how to create a Shared Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Recipients >> Sha…
In this video we show how to create a Resource Mailbox in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: Navigate to the Recipients >> Resources tab.: "Recipients" is our default selection …

947 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

21 Experts available now in Live!

Get 1:1 Help Now