Even these days we can find many vulnerable servers connected to the internet which allows unauthenticated access to its smtp ports.This allows the attacker to send spoofed mails.
The general methodology for sending spoofed mails, using telnet is described below. We can use the same method to send spoofed mails after knowing the vulnerable server.
start > run >cmd telnet
help
helo < domain name>
mail from : < sender's mail address>
rcpt to : < victim's mail address>
data
< message>
Countermeasures:
Always use a secure E-mail system like "Pretty Good Privacy"( PGP) for sending mails.
Digitally sign the E-mail's.
DO NOT do transactions blindly believing the E-mail service.
The most important aspect is the awareness of the user that nothing can be done effectively against E-mail spoofing
Some Eg sites which will allow you to do Email Spoofing:
funmaza- funmailer
link 2
TIPS:
The links I provide is purely for educational purposes.
Even though you send spoofed emails it is easy to track the IP of the person sending the mails. Be Aware of that.
Create Disposable Email ID :To create a disposable email address to protect your privacy online. If you need to give someone your email address, or need to sign up to a website which requires an email address, but you don't wish to reveal your identity then use this free service for receiving emails. Simply signup instantly, give them the disposable email address and you'll be able to read every email they send in complete privacy. ( use it at your own risk) click here to get one.
2 comments:
dude-- i used tat first site to sent a mail to one of ma frndz,,,it didnt work,,,,what shud i do :-)),,,,second time ,,i tried it with my own ,,,,nvr received the mail till now,,,
SORRRRRRRRRRYYYYYYY yaar,,,
it workd this time,,,,,:-)),,,i think i typed the wrong email first time,,,anywayz i really like tis stuff...its cool !!!!!!!
Post a Comment