Penetration Testing mailing list archives

RE: Identify the make and model of a Mail Server

From: "Terry Vernon" <tvernon24 () comcast net>
Date: Sat, 4 Feb 2006 13:05:14 -0600

If you can connect to the port from the outside simply hooking up to it with
telnet should give you a banner message with the software version. Some mail
servers refuse that information however.

-Terry
-----Original Message-----
From: Doug Fox [mailto:dfox168 () hotmail com] 
Sent: Wednesday, February 01, 2006 10:30 AM
To: pen-test () securityfocus com
Subject: Identify the make and model of a Mail Server

One can use NetCraft (www.netcraft.com) to identify a web server if it is 
Appache, IIS, etc.

How can one identify a mail server behind a firewall, be it Exchange, 
GroupWise, or Lotus Notes?

nmap or nessus helps identify if a mail server is available through tcp port

25.

Any info is much appreciated!

Regards,

DF

----------------------------------------------------------------------------
--
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are

futile against web application hacking. Check your website for
vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers
do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
----------------------------------------------------------------------------
---

------------------------------------------------------------------------------
Audit your website security with Acunetix Web Vulnerability Scanner: 

Hackers are concentrating their efforts on attacking applications on your 
website. Up to 75% of cyber attacks are launched on shopping carts, forms, 
login pages, dynamic content etc. Firewalls, SSL and locked-down servers are 
futile against web application hacking. Check your website for vulnerabilities 
to SQL injection, Cross site scripting and other web attacks before hackers do! 
Download Trial at:

http://www.securityfocus.com/sponsor/pen-test_050831
-------------------------------------------------------------------------------

Current thread:

Identify the make and model of a Mail Server Doug Fox (Feb 04)
- RE: Identify the make and model of a Mail Server Terry Vernon (Feb 04)
- Re: Identify the make and model of a Mail Server Bojan Zdrnja (Feb 04)
- RE: Identify the make and model of a Mail Server Joseph Jenkins (Feb 04)
- Re: Identify the make and model of a Mail Server Devdas Bhagat (Feb 04)
- RE: Identify the make and model of a Mail Server Bhaven Haria (Feb 05)
- <Possible follow-ups>
- RE: Identify the make and model of a Mail Server Bob Radvanovsky (Feb 05)
- RE: Identify the make and model of a Mail Server Bob Radvanovsky (Feb 09)