1
1
1thater2020-12-21 20:29:13
Email
1thater, 2020-12-21 20:29:13

How does fake email sender address work?

I'm looking at a nodejs course right now.
There, the author implements sending letters using sendgrid.

In the sending configuration, he specifies quite ordinary data (the letter itself, the destination address) AND the sender's address; In the sender's address, he specifies a completely random email of the sender, and lo and behold, the letter to the user comes with the sender from this address.

How it works?
How is it possible to "deceive" people with such means ...

Answer the question

In order to leave comments, you need to log in

3 answer(s)
G
galaxy, 2020-12-21
@1thater

SMTP is one of the oldest Internet protocols that has survived to this day almost unchanged, and is still widely used today.
Protection against forgery of the sender is historically not provided for at all. Hence all the world's problems with email spam.
In practice, several protection mechanisms have been devised, from IETF standards to tacit agreements, which nevertheless, plus or minus, follow. On the other hand, all these measures without a twinge of conscience can be called crutches.
So, there is a reputation system for servers and sender domains (well-known spam lists like spamhaus).
There are SPF and DKIM mechanisms (normally they work only in conjunction with DMARC, otherwise there are many reservations).
There are certain and nowhere really standardized rules that almost everyone uses (starting with SpamAssassin): checking the existence of the sending domain and MX records, checking the reverse zone of the sender address, checking the domain in EHLO, and various combinations of them. Greylisting mechanism. Etc.
Plus, endless heuristics based on the content of letters, correspondence history, complaints statistics, etc.
All this now allows large mailers like Gmail to filter spam very successfully (including letters with a fake sender address).
On the other hand, if the owner of the sending domain did not care about any protection, and the attacker knows how to correctly configure the mail agent, then hello.
The same if the recipient has not configured the receiving mail server.

C
CityCat4, 2020-12-22
@CityCat4

How is it possible to "deceive" people with such means ...

Lokhov and hamsters - yes. Like a thousand other ways. Open the source text of your message and look at the headers.
And be surprised.

D
d-stream, 2020-12-21
@d-stream

Can. And they deceive. More precisely, they deceived, now there are heaps of crutch methods to deal with such an architectural miscalculation of mail sending protocols.

Didn't find what you were looking for?

Ask your question

Ask a Question

731 491 924 answers to any question