Penetration Testing mailing list archives
Discovering users by RCPT TO
From: "Andres Molinetti" <andymolinetti () hotmail com>
Date: Wed, 12 Jan 2005 20:42:04 +0000
I'm currently over a pen-test and I have found that their SMTP Server (SendMail) does not have VRFY or EXPN methods available, which was the most probably thing to happen taking into account the server has been through some hardening before.
Testing for Open Relay, I realized that the server answers different to existing users and non-existing users, when trying to deliver mails using RCPT TO:
E.g: rcpt to: asdfasdf@domain 550 5.1.1 asdfasdf@domain... User unknown rcpt to: bin@domain 250 2.1.5 bin@domain... Recipient ok rcpt to: nobody@domain 250 2.1.5 nobody@domain... Recipient ok rcpt to: oper@domain 550 5.1.1 oper@domain... User unknown rcpt to: root@domain 250 2.1.5 root@domain... Recipient okIs this ok or is it information disclousure? Is there any way to fix it? It is Sendmail...
Thanks in advance, Andres Molinetti CISSP _________________________________________________________________Acepta el reto MSN Premium: Protección para tus hijos en internet. Descárgalo y pruébalo 2 meses gratis. http://join.msn.com?XAPID=1697&DI=1055&HL=Footer_mailsenviados_proteccioninfantil
Current thread:
- Discovering users by RCPT TO Andres Molinetti (Jan 12)
- Re: Discovering users by RCPT TO GuidoZ (Jan 13)
- Re: Discovering users by RCPT TO Martin Fallon (Jan 13)
- Re: Discovering users by RCPT TO Kiril Todorov (Jan 13)
- Re: Discovering users by RCPT TO Chris Buechler (Jan 13)
- Re: Discovering users by RCPT TO Jay D. Dyson (Jan 14)
- Re: Discovering users by RCPT TO Vince Hoang (Jan 14)
- Re: Discovering users by RCPT TO dmz (Jan 14)
- Re: Discovering users by RCPT TO Matan Peled (Jan 15)
- Re: Discovering users by RCPT TO Faisal Khan (Jan 15)
- Re: Discovering users by RCPT TO Chris Buechler (Jan 13)
- Re: Discovering users by RCPT TO GuidoZ (Jan 13)
- <Possible follow-ups>
- RE: Discovering users by RCPT TO Bassett, Mark (Jan 15)