MAIL SPOOFING If You Have a Telnet Client Set up As a Helper App to Your

MAIL SPOOFING

What is Needed? All that you need is a generic telnet client. Local echo should be turned on so you can see what you type. Also, it is important to note that SMTP servers do not handle backspaces, so you must type everything correctly.

How do I Start? Telnet to port 25 of your target SMTP server (more on SMTP servers selection below). The server should respond with a generic welcome message. You will type HELO domain.name. Use any domain name you wish as most servers do not check the name against the IP you are telneting from. Type MAIL FROM: . This is where the message will appear to be from. Next, type RCPT TO: . This specifies who will receive the message. Type DATA and type the body of your message. To send the message, enter a line with only a period. Type QUIT to disconnect.

Yahoo! Mail Settings Unlike Hotmail, Yahoo! Mail offers standard POP3 access for receiving emails incoming through your Yahoo mailbox, by using your favorite email client software. To setup your email client for working with your Yahoo account, you need to select the POP3 protocol and use the following mail server settings: Yahoo Incoming Mail Server (POP3) - pop.mail.yahoo.com (port 110) Yahoo Outgoing Mail Server (SMTP) - smtp.mail.yahoo.com (port 25)

Google GMail Settings The Google GMail service offers email client access for retrieving and sending emails through your Gmail account. However, for security reasons, GMail uses POP3 over an SSL connection, so make sure your email client supports encrypted SSL connections. Google Gmail Incoming Mail Server (POP3) - pop.gmail.com (SSL enabled, port 995) Outgoing Mail Server - use the SMTP mail server address provided by your local ISP

Lycos Mail Settings The Lycos Mail Plus service allows you to use POP3 and SMTP servers for accessing your Lycos mailbox. Lycos Mail Incoming Mail Server (POP3) - pop.mail.lycos.com (port 110) Outgoing Mail Server - smtp.mail.lycos.com or use your local ISP SMTP mail server

AOL Mail Settings The AOL email service is a web based system, designed for managing your AOL mailbox via HTTP IMAP access. Unlike Hotmail, you can use any email client to access your AOL mailbox, as long as it supports the IMAP protocol. AOL Incoming Mail Server (IMAP) - imap.aol.com (port 143) AOL Outgoing Mail Server - smtp.aol.com or use your local ISP SMTP mail server

Netscape Internet Service Mail Settings The Netscape e-mail system is web-based, which means you can access their e-mail from any Internet connection. Netscape Internet Service also supports AOL® Communicator, Microsoft® Outlook, Microsoft® Outlook Express, and other POP3 e-mail software. The outgoing mail server needs SSL support, so make sure your email client software supports SSL connections over the SMTP protocol. Netscape Internet Service Incoming Mail Server (POP3) - pop.3.isp.netscape.com (port 110) Netscape Internet Service Outgoing Mail Server - smtp.isp.netscape.com (port 25, using a secure SSL connection)

Hey, for hotmail, there is not pop or smtp servers, you have to use the HTTP option in your outlook express. The link is http://services.msn.com/svcs/hotmail/httpmail.asp

You can avoid having to go into hotmail.com and avoid all of the annoying ads.

If you have a telnet client set up as a helper app to your web browser, simply click on the name of a server to use the server for direct mail. Some links may be slow. centerof.thesphere.com misl.mcp.com jeflin.tju.edu

1 arl-mail-svc-1.compuserve.com alcor.unm.edu mail-server.dk-online.dk lonepeak.vii.com burger.letters.com aldus.northnet.org netspace.org mcl.ucsb.edu wam.umd.edu atlanta.com elmer.anders.com venus.earthlink.net urvax.urich.edu vax1.acs.jmu.edu loyola.edu cornell.edu brassie.golf.com quartz.ebay.gnn.com acad.bryant.edu palette.wcupa.edu utrcgw.utc.com umassd.edu trilogy.usa.com mit.edu corp-bbn.infoseek.com vaxa.stevens-tech.edu ativan.tiac.net miami.linkstar.com wheel.dcn.davis.ca.us kroner.ucdavis.edu ccshst01.cs.uoguelph.ca server.iadfw.net valley.net grove.ufl.edu cps1.starwell.com unix.newnorth.net mail2.sas.upenn.edu nss2.cc.lehigh.edu pentagon.mil blackbird.afit.af.mil denise.dyess.af.mil cs1.langley.af.mil wpgate.hqpacaf.af.mil www.hickam.af.mil wpgate.misawa.af.mil guam.andersen.af.mil dgis.dtic.dla.mil www.acc.af.mil redstone.army.mil

------

Apocalypse 95

Last revison: 3.30.96 Mail to: [email protected] Mail Servers with No IP Logging

Number of Servers that have updated Sendmail versions due to my list

------When I wrote How to Send Fake Mail Using SMTP Servers, I said that your messages are traceable by your IP address (it will always be stamped in the header). Well, slowly, I am finding systems that don't append your IP to the message. You can send messages through this servers, using the techniques I described in my SMTP fakemail tutorial, and they are totally untraceable. If you have a telnet client set as a helper app to your broweser, all you have to do is click on the link below, and you will be connected to the respective SMTP server.

DO NOT DO ANYTHING REALLY STUPID WITH THESE SERVERS. If a server was posted on this list, but isn't now, don't use it! Don't say that I didn't warn you. cvo.oneworld.com

2 www.marist.chi.il.us bi-node.zerberus.de underground.net alcor.unm.edu venus.earthlink.net mail.airmail.net

SMTP Tutorial

Mail transport agents (MTAs) like Postfix speak to each other using SMTP (Simple Mail Transport Protocol). To understand how MTAs work, and sometimes don't work, it will help to have a very basic understanding of this protocol. If you telnet to the smtp port (port 25) of a mail server, you can speak with an MTA directly in its native language. Here is an example of how to send [email protected] an email from [email protected]. $ telnet smtp.example.com smtp Trying 192.0.34.72... Connected to smtp.example.com. Escape character is '^]'. 220 smtp.example.com ESMTP Postfix (Debian/GNU) HELO smtp.somewhere.net 250 smtp.example.com MAIL From: [email protected] 250 Ok RCPT To: [email protected] 250 Ok DATA 354 End data with . Hello, Bob! Love, Alice. . 250 Ok: queued as F169C23068 QUIT 221 Bye Connection closed by foreign host. The client begins by identifying itself (HELO) and telling the server it has an email (MAIL) to deliver to one or more recipients (RCPT). It then conveys the contents of the email (DATA) and leaves (QUIT). The server responds to each directive with a numerical code and a message that indicates the success or failure of the requested operation.

Each MTA that handles a mail adds headers containing information about the SMTP session. For example, when it is stored at its destination, the full header and body of the mail we sent above looks like this. Received: from smtp.somewhere.net (smtp.badguy.net []) by smtp.example.com (Postfix) with SMTP id F169C23068 for ; Tue, 6 Aug 2002 12:02:15 -0700 (PDT) Message-Id <[email protected]> Date: Tue, 6 Aug 2002 12:02:15 -0700 (PDT) From: [email protected] To: undisclosed-recipients:;

Hello, Bob! Love, Alice.