Questions tagged [spoofing]

Spoofing is an activity when a person or program try to impersonates itself as another.

Spoofing can be used to gaining an illegitimate advantage by masquerading itself as legitimate party. Some common spoofing are:

IP Spoofing: Special crafted TCP/IP packet with forged source IP address. It can be used to perform DOS attack by sending it to "open" NTP/DNS server.
ARP Spoofing: Special crafted ARP reply messages with forged MAC Address. It can be used to perform MITM attack.
Email Spoofing: Special crafted email with forged sender address and/or forged email header. It can be used to perform phising or spamming.

Another spoofing activities are: HTTP header spoofing, Caller ID spoofing, GPS spoofing and others.

123 questions

vote

2 answers

Possibilities to protect network traffic in datacenter without adding much latency

I am looking for possibilities (and their pros and cons) for protecting network traffic of the components of a a time-critical application in a data center. The aim is minimizing the damage an attacker can cause if he manages to compromose a VM. It…

linux-networking encryption spoofing

asked Dec 07 '20 at 23:51

Hauke Laging

5,157
2
23
40

vote

1 answer

first step to combat display name spoofing on postfix

lately we receive a lot of display name spoofed emails in our company, impersonating customers and suppliers. Since my co-workers unfortunately do not pay too much attention to security warnings, etc. I could not rely on them being aware of the…

security postfix spoofing

asked Jan 28 '20 at 15:27

user3292312

votes

2 answers

What is the point of a bot spoofing various ancient user agents while "GET / HTTP/1.1"?

I found the following interesting traffic in my apache log: 213.159.213.236 - - [16/Dec/2019:03:02:03 -0500] "GET / HTTP/1.1" 200 3797 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; FSL 7.0.7.01001)" 213.159.213.236 - -…

security spoofing useragent

asked Dec 16 '19 at 14:33

Logg

votes

1 answer

How to use my router's Mac Address on Pfsense installed on Esxi

My ISP bind my router's Mac address so only this router can connect to their pppoe server, now I want to connect it on Pfsense installed on Esxi for better configuration options but pppoe server is not connecting on pfSense probably because of Mac…

pfsense mac-address spoofing

asked Oct 17 '19 at 16:19

Uzair Ali

votes

0 answers

Outlook Inbox after spoofing attack is empty. Incoming mails not coming through in Inbox

Supposedly, a spoofing mail was sent to a internal and hundreds of external people from our user's account last Wednesday. Since Friday afternoon, her Outlook Inbox is shown empty and she is not able to receive incoming mails since then. Outgoing…

microsoft-office-365 microsoft-office mail-forwarding spoofing

asked Sep 16 '19 at 07:56

ITguy

votes

0 answers

Why are these popular SMTP providers suggesting I use a subdomain?

When adding a new mail domain to my Mailgun account, I noticed a message informing me I should use a subdomain instead. Intrigued by this I clicked on the FAQ link they provided, but unfortunately it contained little to no technical information as…

smtp spoofing

asked Jul 17 '19 at 14:28

tvanriel

votes

0 answers

Many requests over port 445 on Ubuntu VPS, what could it mean?

I own a small VPS hosted by Hetzner on which i run a small Minecraft game server. The VPS is running on Ubuntu, and the only software i installed are Java JRE and the required software to run a Minecraft game server (+ additional plugins). I ran a…

port hacking tcpdump spoofing

asked Jul 06 '19 at 10:28

Leonardo Fiori

votes

0 answers

Is there a way to reserve a tcp port for an executable on a Linux Server?

I am designing a security policy for a server program on Linux. I wish to reserve a tcp port number-say 8888, to and only to that executable of the program to listen to. Then I could turn the program files as r-x in nosudo user and allow only the…

networking firewall ip port spoofing

asked Mar 26 '19 at 11:28

George Y

votes

1 answer

Whats the purpose of getting daily DMARC reports from google about my Mail Server?

I've been getting DMARC reports from google everyday after setting this up on my domain to prevent domain spoofing. Do I really need to have this daily report? I've never opened the attached zip file before. I have a very small site with less than…

email email-server dmarc spoofing

asked Mar 15 '19 at 17:42

Patoshi パトシ

votes

1 answer

Firewall block all but one ip spoofing

We have a server which accepts traffic coming from a few sources (ip addresses) and accept's it (using firewalld). All other traffic inbound is blocked. How likely is the risk that somebody successfully get through the firewall by spoofing one of…

centos firewall firewalld spoofing

asked Oct 17 '18 at 08:22

user1470265

votes

2 answers

Redirect purely LAN communication to a different interface and port (Linux)

I have the following situation: One interface (device) identified by an IP address of 192.168.1.x (I1) that's connecting through whatever service to another interface with IP 192.168.1.y (I2) to port (P2) on the same LAN. Now I want to redirect all…

linux port-forwarding local-area-network redirection spoofing

asked Sep 13 '18 at 14:12

h4nek

votes

1 answer

fatal error in master.cf when restart postfix

I follow a guide to prevent spoofed emails in my mail server first I installed postfix-policyd-spf-perl apt-get install postfix-policyd-spf-perl second I added this lines to the smtpd_recipient_restrictions in the main.cf check_policy_service…

postfix spf spoofing

asked Jan 29 '17 at 14:00

Emilio Galarraga

votes

2 answers

Change the domain in the 'via' that Gmail shows as the result of a wrong SPF record

So I have a small Linux webserver, it is running the Direct Admin control panel and everything is working fine. For each domain, SPF and DKIM records are present in the DNS and mail is (as far as I know) never flagged as spam, perfect. Now I have a…

exim spf gmail spoofing

asked Jun 25 '16 at 09:07

Neograph734

votes

0 answers

Exchange 2013 -Prevent Spam emails from outside but with my internal domain name

my apologies if this question was asked and answered previously. we have Exchange 2013 email server. We have been seeing some of the emails are coming from outside but using our own domain name which should not be. any email coming from outside…

spam exchange-2013 spam-filter spoofing

asked May 27 '16 at 05:38

arifr

votes

1 answer

Spoofing a duplicate MAC address on an interface not connecting to the network where the original MAC is

I'm trying to run a PHP project on a test server. The project uses an internal framework that has been modified so it will only run on the production server by checking the MAC address in eth0, and encoded with ioncube, (I have no access to the…

networking mac-address spoofing

asked Oct 24 '15 at 19:50

Snivs

Prev 1 2 3

…

8 9 Next