Tuesday, March 11, 2008

Open Relay berbahayakah ??

disini saya mencoba menggunakan bagaimana open relay digunakan pada smtp.telkom.net

apakah berbahaya .... mari kita lihat ....

[root@boc ~]# telnet smtp.telkom.net 25
Trying 10.11.15.37...
Connected to smtp.telkom.net (10.11.15.37).
Escape character is '^]'.
220-out-mta1.plasa.com 76 ESMTP Tue, 11 Mar 2008 13:07:12 +0700.
220-Not for public use. Only registered users and servers allowed.
220 UBE, porn, and abusive content not allowed.
set local_echo
500 unrecognized command
helo smtp.telkom.net
250 out-mta1.plasa.com Hello smtp.telkom.net [10.11.21.200]
mail from : iqbal@iqbal-ganteng.com
500 unrecognized command
mail from: iqbal@iqbal.com
250 OK
rcpt to: just_comp@yahoo.com
250 Accepted
data
354 Enter message, ending with "." on a line by itself
subject: email send
hi disana pakabar.

.

saya membuka header di email saya ...

X-Apparently-To: just_comp@yahoo.com via 206.190.39.122; Mon, 10 Mar 2008 23:09:33 -0700
X-Originating-IP: [203.130.196.76]
Return-Path:
Authentication-Results: mta511.mail.mud.yahoo.com from=; domainkeys=neutral (no sig)
Received: from 203.130.196.76 (EHLO out-mta1.plasa.com) (203.130.196.76) by mta511.mail.mud.yahoo.com with SMTP; Mon, 10 Mar 2008 23:09:32 -0700
Received: from HELO smtp.telkom.net by out-mta1.plasa.com 76 with smtp id 1JYxfM-0006vX-AV for just_comp@yahoo.com; Tue, 11 Mar 2008 13:09:23 +0700
Subject: email send
Content-Length: 20

hi disana pakabar.


wah bagi saya memang berbahaya jelas ... kenapa ? karena saya bisa melakukan social
engineering terhadap korban yang membawa kasus ini bisa ke teknik phising dll
memasang trap disana sini .... hingga berhasil ...

yah ini digunakan oleh spammer ...

No comments:

Post a Comment