[Full-Disclosure] a question about e-mails
Rainer Gerhards
rgerhards at hq.adiscon.com
Fri Feb 27 15:01:55 GMT 2004
Hi Nico,
lol... which broken mailer are you using? I guess it's time to alert
their security address ;)
Rainer
> -----Original Message-----
> From: Nico Golde [mailto:nion at gmx.net]
> Sent: Thursday, February 26, 2004 2:36 PM
> To: full-disclosure at lists.netsys.com
> Subject: Re: [Full-Disclosure] a question about e-mails
>
> Hallo Chris,
>
> * Chris Smith <chris.rs at xtra.co.nz> [2004-02-26 13:50]:
> > > I have a question for it experts. I want to learn if
> there is any way of
> > > understanding/finding the e-mail addresses at BCC part on
> an e-mail that is
> > > send to you.
> > >
> > > Thanks for your consideration.
> >
> > Um, AFAIK the headers are stripped by the MTA on delivery
> to recipients
> > (except perhaps the recipient who was listed in the BCC
> field, but I'm not
> > sure and will most likely vary between MTA).
> >
> > I'm sure the SMTP RFC would probably help out on this.
>
> I tested it on my system.
> i send a mail to nico and bcc root.
> here is the mail header:
> From nion at gmx.net Thu Feb 26 14:28:30 2004
> Return-Path: nion at gmx.net
> Received: by
> via sendmail from stdin
> id <m1AwLZ0-001n35C at ngolde.de> (Debian Smail3.2.0.114)
> Thu, 26 Feb 2004 14:28:30 +0100 (CET)
> Date: Thu, 26 Feb 2004 14:28:30 +0100
> From: Nico Golde <nion at gmx.net>
> To: nico
> Bcc: root
>
> ^^^^^^^^^
> here is the bcc line
>
>
> Subject: test
> Message-ID: <20040226132830.GA829 at ngolde.de>
>
> [...]
> regards nico
> --
> Nico Golde nico <at> ngolde <dot> de
> public key available on:
> http://www.ngolde.de/gpg.html
> echo "[q]sa[ln0=aln256%Pln256/snlbx]sb729901041524823122snlbxq"|dc
>
Full-Disclosure is hosted and sponsored by Secunia.