Visit Our UNIX and Linux User Community


how to hide the IP in the email header?


 
Thread Tools Search this Thread
Special Forums Cybersecurity how to hide the IP in the email header?
# 1  
Old 08-03-2001
Hammer & Screwdriver how to hide the IP in the email header?

Hi everyone,

I am a new comer in this forum.

When I try to send email in my Linux machine with command "mail" or "sendmail", I always find it include the IP address of my machine in the email header. Does anybody know how to eliminate this IP address or replace it with a fake one in the email header?

Thanks!

Eddie

# 2  
Old 08-06-2001
There are many code examples in the Internet to do this. Try a search for voodoo and UNIX. voodoo is UNIX code that does what your are looking for and more.

voodoo.c
# 3  
Old 08-07-2001
More to the point, why would you need to do this? The headers are there for a reason. Only spammers would want to hide their IP address, and if thats what you are doing then you are certainly not welcome here.

I can't think of any legitimate reasons to spoof your IP...please post here if you have one.
# 4  
Old 08-09-2001
MySQL Not sure

actually I can come up with a few legitimate reasons why you would want to hide your IP.. my systems been tampered with several times because of my IP address spreading around... sometimes the ability to hide your IP is a good way of hacking pervention.. then again.. he could be a spammer...



,AP
# 5  
Old 08-09-2001
Re: Not sure

Quote:
Originally posted by Anthony
my systems been tampered with several times because of my IP address spreading around...sometimes the ability to hide your IP is a good way of hacking pervention
Security through obscurity never works. Take CodeRed for example, your IP does not need to be published anywhere, and your machine is still a potential target. My DSL-connected Linux machine is port-scanned and probed pretty regularly -- and I am not special, and do not "advertise" my IP anywhere. One interesting example is from Project Honeynet. They connected a default RedHat 6.2 (this was some time ago) install to the net, and it was rooted within 15 minutes! Just because you don't "spread" your IP around, does not make you safe in the least. My "well-known" IP address receives just as much attention from potential crackers as my "secret" one...

The solution to your problem is a good firewall, and diligent monitoring of the log files that it produces, not spoofing of mail headers.

Last edited by PxT; 08-09-2001 at 11:52 AM..
# 6  
Old 08-09-2001
There are lot of good reasons to hide the IP address. PRIVACY. Many people would like to send messages with enhanced privacy services; including confidentiality (encrypted messages) and confidentiality of sending address.

There are hundreds of lawful and completely OK reasons to send email with the assurance of complete privacy. In fact, some consider privacy to be a basic right of the individual.

Granted, there are lots of spammers in the world. However the right to privacy exists (in the minds of many peoples of many countries) and the fact that spammers desire privacy does not dilute the rights of non-spammers for privacy services.

# 7  
Old 08-09-2001
Also, I must take some issue with the broad statment:

.... security by obscurity never works....


Security-by-obscurity is not considered a very secure form of security, but we all use security-by-obsurity every day of our lives. The Department of Defense is the US has many 'obscurity' techniques and processes used to augument security management and security services.

In fact, obscurity can be a great enhancement to a very solid 'non obscurity program'.

For example: take the user name ROOT. I have plenty of servers where we have removed the user name ROOT and replaced it with something else, say 'barbara'. So, someone sniffing the network when you accidently login as 'barbara' might not be so excited because they are looking for 'root'. Of course, the UID is still 0 and 'barbara' is not the name of the superuser. However, a little obscurity can help and does.

Same is true with TELNET. Change the port to something else and port scanners get really confused.

Same is true with SENDMAIL. Change the configuration file to say 'welcome to sendmail version 2.3' and the version is so different than anything in the exploit database that the 'obscurity is very useful'.

Same is true for a login MOTD and getty. Instead of 'Welcome to Linux Version 1.2' many change the TELNET return to read 'Welcome to Fore ATM Switch Fabric' Smilie Or even 'Welcome to Microsoft 2000 Professional' Smilie ... when you are running UNIX!! The indications and ramifications are obvious.

I totally agree, obscurity is not great, but it does have some nice applications that are useful combined with other stronger methods Smilie

Previous Thread | Next Thread
Test Your Knowledge in Computers #616
Difficulty: Medium
There is no separate char data type in Python.
True or False?

9 More Discussions You Might Find Interesting

1. Shell Programming and Scripting

Find header in a text file and prepend it to all lines until another header is found

I've been struggling with this one for quite a while and cannot seem to find a solution for this find/replace scenario. Perhaps I'm getting rusty. I have a file that contains a number of metrics (exactly 3 fields per line) from a few appliances that are collected in parallel. To identify the... (3 Replies)
Discussion started by: verdepollo
3 Replies

2. Shell Programming and Scripting

Recursive header for email body

i have added the header also to the script you provided, it is working fine, but I am expecting to get the header over those rows for which the URL or port changes. URL will remain same for few rows and then it change, and once the URL change the header should come, like in below input you can see... (11 Replies)
Discussion started by: mirwasim
11 Replies

3. Programming

How to hide from UNIX strings - obfuscate or hide a literal or constant?

Hi, I need to somehow pipe the password to a command and run some SQL, for example, something like echo $password | sqlplus -s system @query01.sql To make it not so obvious, I decided to try out writing a small C program that basically just do echo $password. So now I just do x9.out | sqlplus... (8 Replies)
Discussion started by: newbie_01
8 Replies

4. Shell Programming and Scripting

Manipulate all rows except header, but header should be output as well

Hello There... I have a sample input file .. number:department:amount 125:Market:125.23 126:Hardware store:434.95 127:Video store:7.45 128:Book store:14.32 129:Gasolline:16.10 I will be doing some manipulations on all the records except the header, but the header should always be... (2 Replies)
Discussion started by: juzz4fun
2 Replies

5. UNIX for Dummies Questions & Answers

Merge all csv files in one folder considering only 1 header row and ignoring header of all others

Friends, I need help with the following in UNIX. Merge all csv files in one folder considering only 1 header row and ignoring header of all other files. FYI - All files are in same format and contains same headers. Thank you (4 Replies)
Discussion started by: Shiny_Roy
4 Replies

6. UNIX for Dummies Questions & Answers

Changing email header information by tweaking sendmail

How can i tweak sendmail configuration files so that the "Received:" field is removed from email header information? Or else can i change Received: (from enswitch@localhost) in email header to something likeReceived: (from xyz@localhost)? ---------- Post updated at 09:57 PM ---------- Previous... (2 Replies)
Discussion started by: proactiveaditya
2 Replies

7. Shell Programming and Scripting

Combining header and data and send email without usage of temp file

Dear All- My requirement is as below- Header file $ cat HEADER.txt RequestId: RequestDate: Data file $ cat DATAVAL.txt 1001|2009-03-01 I need to send the combined data below as email body via mailx command ------------------ RequestId:1001 RequestDate:2009-03-01 I would like... (4 Replies)
Discussion started by: sureshg_sampat
4 Replies

8. Shell Programming and Scripting

mailx requirement - email body header in bold and data content in normal text

Dear all- I have a requirement to send an email via email with body content which looks something below- Email body contents -------------------- RequestType: Update DateAcctOpened: 1/5/2010 Note that header information and data content should be normal text.. Please advice on... (5 Replies)
Discussion started by: sureshg_sampat
5 Replies

9. Linux

Reading the header of a tar file(posix header)

say i have these many file in a directory named exam. 1)/exam/newfolder/link.txt. 2)/exam/newfolder1/ and i create a tar say exam.tar well the problem is, when i read the tar file i dont find any metadata about the directories,as you cannot create a tar containig empty directories. on the... (2 Replies)
Discussion started by: Tanvirk
2 Replies

Featured Tech Videos