[1168] in WWW Security List Archive
Re: mail port
daemon@ATHENA.MIT.EDU (Chuck Yerkes)
Fri Nov 10 18:12:31 1995
From: Chuck Yerkes <Chuck@yerkes.com>
To: rfjimen@tesuque.cs.sandia.gov (Ross F. Jimenez)
Date: Fri, 10 Nov 1995 15:24:50 -0500 (EST)
Cc: www-security@ns2.rutgers.edu
In-Reply-To: <Pine.SUN.3.91.951108221322.16290B-100000@tesuque.cs.sandia.gov> from "Ross F. Jimenez" at Nov 8, 95 10:17:51 pm
Errors-To: owner-www-security@ns2.rutgers.edu
Welcome to 1985....
It's an old issue. It has nothing to do with Web Security.
Use PGP or PEM to sign your messages. I can also send a
Non-E letter with someone else's name on it. Same issue.
Chuck Yerkes
> I have a question... you can telnet to a mail port (25) and send mail
> from it,,to any person, and put it's from anybody you want, are you not
> suppose to do this,, or can anybody do this, can the mail be tracked ??
> It would seem like a big security flaw if you could send false mail so
> easily... ???
> Curious,
