I'm not talking just spoofing the reply to address - I am talking the entire
'received' line.
If anyone can spoof a message from an x400 NHSnet address I nominate,
including all the hops in the received line, I guarantee them a feature in
HSC.
Andrew
> -----Original Message-----
> From: [log in to unmask]
> [mailto:[log in to unmask]]On Behalf Of Ahmad Risk
> Sent: 29 December 1998 20:39
> To: [log in to unmask]
> Subject: Re: Hacking e-mail addresses
>
>
>
> From: Andrew Herd <[log in to unmask]>
> To: GP-UK <[log in to unmask]>
> Sent: Tuesday, December 29, 1998 7:45 PM
> Subject: Hacking e-mail addresses
>
>
>
> >Anyone here got an opinion about how hard it is to hack x400 addresses?
> It
> >seems to me that this could be a vulnerable area for NHSnet, in the era
> of
> >the electronic patient record. In other words, it seems possible that
> >someone could impersonate another account holder for the purposes of
> >obtaining clinical or other data.?
>
> Easy peasy ;-)
>
> I am not going to say how on a public list.
>
> Ahmad
>
>
>
>
%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%%
|