Penetration Testing mailing list archives
Re: [PEN-TEST] examining exchange mail
From: "Deus, Attonbitus" <Thor () HAMMEROFGOD COM>
Date: Sat, 9 Dec 2000 19:18:29 -0800
Not necessarily true. Users can, of course, create personal folders to store messages in, and those are stored on the local drive. Connecting to the Exchange server, even as admin, won't get you any closer to those messages. A smart Exchange/Outlook user will set up a rule that immediately moves all their mail out of the default folder and into a local folder, to prevent cases of admin snooping just like this.
Then we just open their .pst from the admin shares, or, since we control the server box in the first place, just capture all mail to and from their box before it gets moved. Local .pst files don't buy them anything. AD
Current thread:
- [PEN-TEST] examining exchange mail Andrew Thomas (Dec 07)
- Re: [PEN-TEST] examining exchange mail Ryan Russell (Dec 07)
- Re: [PEN-TEST] examining exchange mail Work, Clinton (Dec 07)
- Re: [PEN-TEST] examining exchange mail Phonix (Dec 10)
- Re: [PEN-TEST] examining exchange mail Deus, Attonbitus (Dec 10)
- Re: [PEN-TEST] examining exchange mail Conor Crowley (Dec 10)
- Re: [PEN-TEST] examining exchange mail Robert van der Meulen (Dec 07)
- Re: [PEN-TEST] examining exchange mail Francois Pepin (Dec 07)
- Re: [PEN-TEST] examining exchange mail Patrick Aland (Dec 07)
- Re: [PEN-TEST] examining exchange mail Laura Nuñez (Dec 07)
- <Possible follow-ups>
- Re: [PEN-TEST] examining exchange mail Jeff Oliver (Dec 07)
- Re: [PEN-TEST] examining exchange mail Marty Richards (Dec 07)
- Re: [PEN-TEST] examining exchange mail Mark Armitage (Dec 07)
- Re: [PEN-TEST] examining exchange mail Andrew Thomas (Dec 10)
- Re: [PEN-TEST] examining exchange mail Charlie Roberts (Dec 10)
- Re: [PEN-TEST] examining exchange mail Ryan Russell (Dec 07)