Board index » cppbuilder » Mail security

2007-09-13 05:12:17 PM
cppbuilder24
Hi there
Is there anyway that I can make sure that an email comes from
the address in the from field ?
And is it be possible for somebody else to send an email
where the from field is filled with my email ?
Thanks in advance
Asger
 

"Asger Jorgensen" < XXXX@XXXXX.COM >wrote in message
server.
--
Bruce
 

"Asger Jorgensen" < XXXX@XXXXX.COM >wrote in message
the message to see which server(s) the message has passed through. That
will at least give you an idea of which ISP it was sent from. Some servers
wil also include the IP address of the original client that sent the
message. But there is no single direct way to validate the email address of
the sender, without access to the server-side logs.
Gambit
 

{smallsort}

Thanks Bruce and Remy
Not the answer I hoped for, but better to know the truth though.;-)
The situation is:
I write the sending mail-client and I also write the recieving
mail-client and I always know the name of the outgoing mailserver.
Can You then give me some advice as to how I can make it so that
no one can fake a message without me knowing it ?
Thanks in advance
Asger
 

"Asger Jørgensen" < XXXX@XXXXX.COM >wrote in message
has happened is if you receive a bounced message for an email you did not
send. Otherwise, there is no other way to detect it, as it can happen
completely outside of your system.
Gambit
 

Asger Jørgensen wrote:
 

Thanks Bob
In article < XXXX@XXXXX.COM >,
XXXX@XXXXX.COM says...
Thanks in advance
Asger
 

Thanks Remy
In article <46eb31f1$ XXXX@XXXXX.COM >, XXXX@XXXXX.COM
says...
so I will not be able to catch a bouncing mail.
I was thinking more in the line of adding some kind of date
to the header or the body that could not be faked, witch
I then could check when recieving.
But I am a real newbee when it comes to securety, so any
advice will be greatly apreciated.
Thanks in advance
Asger
 

"Asger Jørgensen" < XXXX@XXXXX.COM >wrote in message
protocol that allows clients to send whatever email data they want and it
gets delivered as-is.
The only way you are going to be able to generate something that you can
verify that can't be easily forged is if you use encryption.
Gambit
 

"Asger Jørgensen" < XXXX@XXXXX.COM >wrote in message
What is PGP ?
PGP = "Pretty Good Privacy"
en.wikipedia.org/wiki/Pretty_Good_Privacy
Gambit
 

Thanks Remy
In article <46eb5f74$ XXXX@XXXXX.COM >, XXXX@XXXXX.COM
says...
every day and then on arivel I check if the key is the right
one for the day.
And istead of relying on the email date I write the date
in the subject.
The mail client could then download the new keys from a
server that required logon
Could that work ?
I am a little afraid of that encryption stuff it looks
very difficult.
Thanks in advance
Kind regards
Asger
 

"Asger Jørgensen" < XXXX@XXXXX.COM >wrote in message
generate the key is never discovered.
You don't need an attachment, though. Putting the key in the headers is
enough, and is less intrusive.
The problem with relying on the date, though, is that it does not handle
situations where delivery is delayed a day or more, unless the original date
is stored in the message as well.
displayed to the user.
you. You really should be using real security instead of trying to invent
your own. It will never be as secure.
Gambit
 

Thanks Remy
In article <46eb8c28$ XXXX@XXXXX.COM >, XXXX@XXXXX.COM
says...
TIdMessage ?
with BCB5. ?
Thanks again
Kind regards
Asger
 

"Asger Jørgensen" < XXXX@XXXXX.COM >wrote in message
When a message a received, only the Headers property is filled in
Gambit