Telnet IP 25
helo
mail from
rcpt to
enter message here, followed by a full stop on a new line
.
Also,
check whether your email server divulges your internal users by
supporting the EXPN and VRFY commands (for example, VRFY administrator
-> admin@example.org):
' telnet 25
help - does it show EXPN / VRFY to be supported?
EXPN administrator
VRFY admin'
Finally,
check if it's possible to send a spoofed email through the email
server. For example, SMTP server for domain "example.org" receives an
external email from john.smith@example.org. Does your email server drop this email? It should do
No comments:
Post a Comment