[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: TECH-OMISSION: Security vulnerability - Malicious DSN attacks

To: IETF MARID WG <ietf-mxcomp@xxxxxxx>
Subject: Re: TECH-OMISSION: Security vulnerability - Malicious DSN attacks
From: "Carl S. Gutekunst" <csg@xxxxxxxxxx>
Date: Tue, 31 Aug 2004 11:28:39 -0700
In-reply-to: <>
List-archive: <http://www.imc.org/ietf-mxcomp/mail-archive/>
List-id: <ietf-mxcomp.imc.org>
List-unsubscribe: <mailto:ietf-mxcomp-request@imc.org?body=unsubscribe>
References: <>
Sender: owner-ietf-mxcomp@xxxxxxxxxxxx
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.7) Gecko/20040514

Daryl Odnert wrote:

To put it in simple terms, you cannot launch this type of attack
against V using P using unless one of the following is true:

(1) P is an open relay.

(2) The attack messages are sent to P from an IP address that
normally sends mail for domain V.

(3) IP address spoofing is used to make it look like the attack
message is coming from an IP address that normally sends mail for
domain V.

(4) The attack messages are sent to P from an IP address that P considers to be part of its own management domain, and it puts no restrictions on either the MailFrom or the From header field from such IP addresses.

I believe (4) applies to the overwhelming majority of ISP's submission hosts, including all three ISPs that I use regularly, and every hotel, airport, and public WiFi I've used in the past year.

<csg>

References:
- RE: TECH-OMISSION: Security vulnerability - Malicious DSN attacks
  - From: Daryl Odnert

Prev by Date: Re: Sendmail releases open source Sender ID milter for testing
Previous by thread: RE: TECH-OMISSION: Security vulnerability - Malicious DSNattacks
Next by thread: DEPLOY: Prior Art for PRA
Index(es):
- Date
- Thread