You'd probabily have more success on the sneakers list, but most any
computer security book (Garfinkle and Spafford, Belovine and
Cheswick, Curry, etc) will describe how to telnet into the smtp
port on a UNIX like computer and enter commands directly into
sendmail to spoof e-mail. Since you can enter the entire text,
you can make it come from anyone, go to anyone and say anything.
Some SMTP processes record the actual source in the header, some
don't.
Since you didn't forward the headers (all the details of the message
source and destination handling) we don't know in this case.
Not that this is firewalls stuff.. (other than assuring outgoing
messages carry the real IP address or host name signature of the
source - not one made up by a user),
Some mail handlers (sendmail like programs) will insert a warning
message in the headers if the From address doesn't compare with the
host address "properly" [using synonym (MX) look up as well as address
resoultion) .
> Please forgive my ignorance but could someone please explain to me in
> layman's terms on how somebody on the Internet has got my E-mail address
> and sent this.
When you send an e-mail, anyone on the internet can use their Web
Browser to search for your mail to determine what subjects you are
interest in, and your views on those subjects.
> Many thanks in advance
Again, this is more appropriate material for the sneakers list...
Best wishes, Jon!
-----------------------------------------------------------------
Internet: mshines @
purdue .
edu * Michael S. Hines, CDP, CFE
Voice: (765) 494-5845 * Sr. Information Systems Auditor
FAX: (765) 496-1814 * Purdue University
* 1065 Freehafer Hall
* West Lafayette, IN 47907-1065
|
|
