North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: Suggestion for improved identD
On Tue, 19 May 1998, Troy Davis wrote: ) An example SMTP header: ) ) Received: from evilspammer (207-172-189-146.s67.as3.plb.erols.com ) [22.214.171.124]) by smtp2.erols.com (8.8.8/8.8.5) with SMTP id XAA19893 ) for <firstname.lastname@example.org>; Mon, 18 May 1998 23:34:27 -0400 (EDT) ) ) In common implementations*, "evilspammer" will be the identd reply. Since ) it's easily forgable, simply disregard it and go by the IP address (and ) hostname, if shown). Actually, in that example, ther was no ident reply from the remote host. "evilspammer" is just the name given when the remote host gives his EHLO or HELO. Received: from mail.n.ml.org (email@example.com [126.96.36.199]) ... means my mail server identified itself as "mail.n.ml.org," with a real host name of "narnia.mhv.net" and IP of 188.8.131.52, and an ident reply of "djr." -- Daniel Reed <firstname.lastname@example.org> (ask me for my PGP key) One man's Windows are another man's walls...