Re: [NTO] security question
- Dean Martineau wrote:
> A friend tells me that her email address has apparently beenAnyone can spoof someone else's address in the From field, that does
> spoofed. She is getting messages from people quoting messages sent
> from her address that she didn't send.
not require any access to the person's computer or to their email
account, it's just a function of entering the address in a box in the
email program. It's particulary simple if you're using Outlook
Express or Eudora or just about any popular email program and it only
requires that your ISP doesn't check the From field for an address
provided by the ISP.
I use OE and I can put *any* email address, yours, Jody's, or
something like GeorgeWBush@... and send it out and if the
recipient only looks at the From address, they'll think it's from you,
Jody or the President. And it doesn't matter what email program or
firewall you or Jody or the President uses, it's what I'm using that
makes me able to spoof someone else's address.
So all it means is someone else has an email program like OE or Eudora
and they're putting your friend's email address in the From field and
sending out messages and the recipients are just looking at the From
field and thinking it's from your friend. If they examined the full
headers of those emails, they could trace it back to the ISP of the
real person who sent the email.
Idiot Box: http://idiotbox.populli.org/
An older gentleman was standing at a bus stop, observing a young man
with orange, green, and blue spiked hair. After a few moments, the
young man said, "What's the matter, old man, haven't you ever done
anything wild?" The old man smiled and said, "Well, yes. I once had
sex with a parrot, and I was wondering if you might be my son . . . "