Email Spoofing

Below is the result of attempting to spoof MVNU's exchange server

skon@CSUbuntuTestServer:~$ nslookup -q=MX mvnu.edu
Server: 149.143.2.206
Address: 149.143.2.206#53

mvnu.edu mail exchanger = 10 neimoidia.mvnu.edu.
mvnu.edu mail exchanger = 20 meridias.mvnu.edu.

skon@CSUbuntuTestServer:~$ telnet neimoidia.mvnu.edu 25
Trying 149.143.206.15...
Connected to neimoidia.mvnu.edu.
Escape character is '^]'.
220 Neimoidia.ad.mvnu.edu Microsoft ESMTP MAIL Service ready at Sat, 25 Feb 2012 23:41:33 -0500
helo localhost
250 Neimoidia.ad.mvnu.edu Hello [149.143.3.61]
MAIL FROM: <nastygeezer@brutal.com>
250 2.1.0 Sender OK
RCPT TO: <skon@mvnu.edu>
data
h550 5.7.1 :127.0.0.3:Client host 149.143.3.61 blocked using 88.blocklist.zap; Mail from IP banned. To request removal from this list please forward this message to delist.forefront@messaging.microsoft.com
ello 503 5.5.2 Need rcpt command
451 4.7.0 Timeout waiting for client input
Connection closed by foreign host.
skon@CSUbuntuTestServer:~$ hello

-- JimSkon - 2012-02-26

Topic revision: r1 - 2012-02-26 - JimSkon
 
This site is powered by the TWiki collaboration platformCopyright &© by the contributing authors. All material on this collaboration platform is the property of the contributing authors.
Ideas, requests, problems regarding TWiki? Send feedback