Penetration Testing mailing list archives
Re: [PEN-TEST] examining exchange mail
From: Ryan Russell <ryan () SECURITYFOCUS COM>
Date: Wed, 6 Dec 2000 10:11:31 -0800
On Wed, 6 Dec 2000, Andrew Thomas wrote:
I have domain admin on a network, and I want to know how I would go about viewing mail *stored* on the Exchange Server, if this is possible.
Run Outlook, and Go to File->Open->Other User's Folders. It's possible
that you might need the password & account that Exchange runs under, which
you should be able to get and crack if you've got Admin.
I've only been able to get to people's Inbox this way, but I'm probably
just doing something stupid that prevents me from getting to their other
folders.
The actual mail is all stored in one monolithic file on the Exchange
server, in some sort of DB format.
Ryan
Current thread:
- [PEN-TEST] examining exchange mail Andrew Thomas (Dec 07)
- Re: [PEN-TEST] examining exchange mail Ryan Russell (Dec 07)
- Re: [PEN-TEST] examining exchange mail Work, Clinton (Dec 07)
- Re: [PEN-TEST] examining exchange mail Phonix (Dec 10)
- Re: [PEN-TEST] examining exchange mail Deus, Attonbitus (Dec 10)
- Re: [PEN-TEST] examining exchange mail Conor Crowley (Dec 10)
- Re: [PEN-TEST] examining exchange mail Robert van der Meulen (Dec 07)
- Re: [PEN-TEST] examining exchange mail Francois Pepin (Dec 07)
- Re: [PEN-TEST] examining exchange mail Patrick Aland (Dec 07)
- Re: [PEN-TEST] examining exchange mail Laura Nuñez (Dec 07)
- <Possible follow-ups>
- Re: [PEN-TEST] examining exchange mail Jeff Oliver (Dec 07)
- Re: [PEN-TEST] examining exchange mail Marty Richards (Dec 07)
(Thread continues...)
- Re: [PEN-TEST] examining exchange mail Ryan Russell (Dec 07)