Security Basics mailing list archives
Re: Basically Lazy - Email Header Analysis
From: "Ian" <e2chameleon () btopenworld com>
Date: Mon, 26 May 2003 18:41:32 +0100
Hi Andy, Have you looked at eMailTrackerPro from Visualware (http://www.visualware.com/emailtrackerpro/index.html)?. It's an email analysis tool that is designed to help you track an email to the IP address of the machine the email was written on. It also plugs into VisualRoute (also by Visualware) which is a set of network analysis tools wrapped up in a grpahic interface. Apparently your email came to me from list.securityfocus.com in Canada (Ottowa) via the USA (Chicago) before coming to me in Scotland. Free evaluation software is available. I'm not an expert in this field but it looks OK to my untrained eyes. It is not currently raining in Glasgow but I think that it's a temporary abomination that will be rectified shortly :) Cheers, Ian. e2chameleon Information Security Resource -------Original Message------- From: Andy Cuff [talisker] Date: 26 May 2003 17:41:00 To: security-basics () securityfocus com Subject: Basically Lazy - Email Header Analysis Hi Whilst drowning my sorrows in the UK rain following our resounding defeat in the Eurovision song contest (Politics in Europe surely not !!) I have turned my attention to email headers. Whilst I'm quietly confident about manually analysing email headers, I'm looking for tools or web resources that will automate some of the process. There are plenty of anti-spam resources such as http://combat.uxn.com/ and http://www.spamhaus.org/ to identify spammers and there is the infamous Sam Spade for testing Open Mail Relay Agents. There are a plethora of how-to's and FAQ's about analysing headers manually. But I haven't found many resources that analyse the headers in sufficient accurate detail. Personally I would rather run a tool on my own system than put my headers through a 3rd party website but there are a few sites that seem to do it fairly well such as http://www.3dmail.com/spam/ which whilst spam focussed seems fairly comprehensive, though sadly a beta which hasn't been updated in a year. Any recommendations websites or tools would be greatly appreciated, if there is a sufficient response I will collate the information onto a new page for the website below and post a summary to this list cheers, and for the Brits have a good Bank Holiday Weekend I hope the weather is better where you are! take care -andy Taliskers Network Security Tools http://www.networkintrusion.co.uk --------------------------------------------------------------------------- Thinking About Security Training? You Can't Afford Not To! Vigilar's industry leading curriculum includes: Security +, Check Point, Hacking & Assessment, Cisco Security, Wireless Security & more! Register Now! --UP TO 30% off classes in select cities-- http://www.securityfocus.com/Vigilar-security-basics ---------------------------------------------------------------------------- . ____________________________________________________ IncrediMail - Email has finally evolved - Click Here --------------------------------------------------------------------------- ----------------------------------------------------------------------------
Current thread:
- Basically Lazy - Email Header Analysis Andy Cuff [talisker] (May 26)
- RE: Basically Lazy - Email Header Analysis David Gillett (May 27)
- Re: Basically Lazy - Email Header Analysis stefmit (May 27)
- Re: Basically Lazy - Email Header Analysis Jeremy Anderson (May 30)
- Re: Basically Lazy - Email Header Analysis J . Reilink (May 30)
- <Possible follow-ups>
- Re: Basically Lazy - Email Header Analysis Ian (May 27)
- Re: Basically Lazy - Email Header Analysis David Vertie (May 27)
- RE: Basically Lazy - Email Header Analysis Mike Heitz (May 27)