Security Basics mailing list archives

Re: POP3 passwords

From: "Simon Garner" <sgarner () expio co nz>
Date: Wed, 22 Oct 2003 10:23:06 +1300

On Wednesday, October 22, 2003 7:59 AM [GMT+1200=NZT],
Francisco Andrades <fandrades () nextj com> wrote:

Steve McLaughlin wrote:

Would it be possible to spoof the IP of the POP3 server to the mail
client over the internet from a dummy mail server, using say,
Packit, and then, sniff the packets hitting the LAN card?


100% doable. In fact you can use ARP spoofing to redirect any
communication through a sniffer. That includes telnet, ftp, POP3,
IMAP, TLS/SSL, SSH (of course, in the case of secure protocols it's
of no use because you receive encrypted streams).


Not over the Internet you can't.

-Simon


---------------------------------------------------------------------------
Visual & Easy-to-use are not words that you think of when talking about 
network analyzers. Are you sick of the three window text decodes? Download ClearSight Network's Analyzer and see a new 
network analysis tool that 
makes the complex - easy
www.clearsightnet.com/jmp6-downloadtrial.jsp
----------------------------------------------------------------------------

Current thread:

Re: POP3 passwords, (continued)
- - Re: POP3 passwords Francisco Andrades (Oct 20)
- Re: POP3 passwords Simon Gray (Oct 20)
- Re: POP3 passwords Francisco Andrades (Oct 20)
- Re: POP3 passwords Todd Troxell (Oct 20)
- Re: POP3 passwords JGrimshaw (Oct 20)
- Re: POP3 passwords Hendra Santosa (Oct 21)
- RE: POP3 passwords Dave Killion (Oct 20)
  - Re: POP3 passwords Meritt James (Oct 20)
  - RE: POP3 passwords Steve McLaughlin (Oct 21)
    - Re: POP3 passwords Francisco Andrades (Oct 21)
    - Re: POP3 passwords Simon Garner (Oct 21)
  - RE: POP3 passwords Golden_Eternity (Oct 22)
- RE: POP3 passwords Chris Merkel (Oct 20)
- RE: POP3 passwords Keller, Tim (Oct 20)
- Re: FW: POP3 passwords Sec1 (Oct 20)
- RE: POP3 passwords Dave Killion (Oct 21)
- Re: POP3 passwords Phillip McCollum (Oct 22)