North American Network Operators Group|
Date Prev | Date Next | Date Index | Thread Index | Author Index | Historical
Re: Suggestion for improved identD
On Tue, 19 May 1998, Troy Davis wrote: ) An example SMTP header: ) ) Received: from evilspammer (207-172-189-146.s67.as3.plb.erols.com ) [188.8.131.52]) by smtp2.erols.com (8.8.8/8.8.5) with SMTP id XAA19893 ) for <[email protected]>; Mon, 18 May 1998 23:34:27 -0400 (EDT) ) ) In common implementations*, "evilspammer" will be the identd reply. Since ) it's easily forgable, simply disregard it and go by the IP address (and ) hostname, if shown). Actually, in that example, ther was no ident reply from the remote host. "evilspammer" is just the name given when the remote host gives his EHLO or HELO. Received: from mail.n.ml.org ([email protected] [184.108.40.206]) ... means my mail server identified itself as "mail.n.ml.org," with a real host name of "narnia.mhv.net" and IP of 220.127.116.11, and an ident reply of "djr." -- Daniel Reed <[email protected]> (ask me for my PGP key) One man's Windows are another man's walls...