?
Solved

Query regarding message spoofing

Posted on 2008-10-13
1
Medium Priority
?
272 Views
Last Modified: 2013-11-30
Hi

We seem to be receiving a lot of SPAM mail, particularly messages that are spoofed.

They have the characteristics;

From: SPOOFED
Return-Path: SPOOFED
Message-ID: #####@servername.com

Couple of questions I was hoping someone could help me with;

a) I understand it is quite possible to spoof the FROM:, but can the Return-Path (i.e. MAIL FROM:) be spoofed as well?

b) Can the source IP address of the mails be spoofed?

c) Can the Message-ID servername be spoofed?

Hope someone can help!
0
Comment
Question by:kam_uk
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
1 Comment
 
LVL 34

Accepted Solution

by:
PsiCop earned 2000 total points
ID: 22707164
a) Yes. "Return-path" is just another message header. It is easy to spoof as any other message header, like "From"

b) Yes and no. Yes, the spammer may include spoofed headers with false or misleading IP information. No, in that when YOUR mail server adds a "Received: from" header, it will have accurate IP information for the host that connected to it.

c) Yes. Just like "Return-path", it's just another message header.
0

Featured Post

Want to be a Web Developer? Get Certified Today!

Enroll in the Certified Web Development Professional course package to learn HTML, Javascript, and PHP. Build a solid foundation to work toward your dream job!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

If you troubleshoot Outlook for clients, you may want to know a bit more about the OST file before doing your next job. IMAP can cause a lot of drama if removed in the accounts without backing up.
Check out the latest tech news, community articles, and expert highlights in August's newsletter.
In this video we show how to create an Accepted Domain in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Ac…
To show how to create a transport rule in Exchange 2013. We show this process by using the Exchange Admin Center. Log into Exchange Admin Center.: First we need to log into the Exchange Admin Center. Navigate to the Mail Flow >> Rules tab.:  To cr…
Suggested Courses

771 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question