[jdev] spoofing "from" attributes
Fabio Forno
fabio.forno at polito.it
Tue Feb 22 08:01:33 CST 2005
Richard Dobson wrote:
> Components as far as I understand it should be able to spoof messages as
> much as you like, but if you try to send those outside your server and
> want them to be delivered you must ensure that the domain in the from
> address is the domain of the server you are trying to send it from,
> otherwise remote servers will reject your attempts to deliver messages
> they see as spoofed to them.
>
This is what I'm not able to do. The 'service unvailable' error suggests
me that this kind of spoofing should work, but either the s2s component
does not support it or some option must set in the config file.
>> Why? I don'get this. If I write my s2s component sending messages from
>> anyuser at myserver, who can block me? AFAIK, from the outside nobody can
>> detect that those are fake users.
>
>
> I see, so you are not really spoofing addresses in regard to spoofing
> the domain name (which you will never be able to do).
>
Of course I'm not spoofing domanins, just the user part ;)
>
> You will be able to spoof messages to your local users, but any messages
> you try to send remotely will only work if you are trying to send them
> from a domain name your server is responsible for, and dialback is
> working for.
As I've written it does not start any dialback attempt.
--
Fabio Forno, Ph.D. - Research Assistant
Politecnico di Torino - Dip. Automatica e Informatica
C.so Duca degli Abruzzi 24 - 10129 Torino (Italy)
Phone: +39 011 2276 102 - JabberId: sciasbat at jabber.linux.it
More information about the JDev
mailing list