forgeries(7)                                                      forgeries(7)


NNAAMMEE
       forgeries - how easy it is to forge mail

SSUUMMMMAARRYY
       An  electronic mail message can easily be forged.  Almost everything in
       it, including the return address, is completely under  the  control  of
       the sender.

       An  electronic mail message can be manually traced to its origin if (1)
       all system administrators of intermediate machines are both cooperative
       and  competent, (2) the sender did not break low-level TCP/IP security,
       and (3) all intermediate machines are secure.

       Users of  _c_r_y_p_t_o_g_r_a_p_h_y  can  automatically  ensure  the  integrity  and
       secrecy  of  their  mail messages, as long as the sending and receiving
       machines are secure.

FFOORRGGEERRIIEESS
       Like postal mail, electronic mail can be created entirely at  the  whim
       of  the sender.  FFrroomm, SSeennddeerr, RReettuurrnn--PPaatthh, and MMeessssaaggee--IIDD can all con-
       tain whatever information the sender wants.

       For example, if you inject a message through sseennddmmaaiill  or  qqmmaaiill--iinnjjeecctt
       or  SSMMTTPP,  you  can simply type in a FFrroomm field.  In fact, qqmmaaiill--iinnjjeecctt
       lets you set up MMAAIILLUUSSEERR, MMAAIILLHHOOSSTT, and MMAAIILLNNAAMMEE environment  variables
       to produce your desired FFrroomm field on every message.

TTRRAACCIINNGG FFOORRGGEERRIIEESS
       Like  postal mail, electronic mail is postmarked when it is sent.  Each
       machine that receives an electronic mail message adds a  RReecceeiivveedd  line
       to the top.

       A  modern  RReecceeiivveedd  line contains quite a bit of information.  In con-
       junction with the machine’s logs, it lets a competent  system  adminis-
       trator  determine  where the machine received the message from, as long
       as the sender did not break low-level TCP/IP security  or  security  on
       that machine.

       Large  multi-user machines often come with inadequate logging software.
       Fortunately, a system administrator can  easily  obtain  a  copy  of  a
       931/1413/Ident/TAP server, such as ppiiddeennttdd.  Unfortunately, some system
       administrators fail to do this, and are thus unable to figure out which
       local user was responsible for generating a message.

       If all intermediate system administrators are competent, and the sender
       did not break machine security or low-level TCP/IP security, it is pos-
       sible  to  trace  a  message backwards.  Unfortunately, some traces are
       stymied by intermediate system administrators who are uncooperative  or
       untrustworthy.

CCRRYYPPTTOOGGRRAAPPHHYY
       The sender of a mail message may place his message into a _c_r_y_p_t_o_g_r_a_p_h_i_c
       envelope stamped with his seal.  Strong  cryptography  guarantees  that
       any two messages with the same seal were sent by the same cryptographic
       entity: perhaps a single person, perhaps a group of cooperating people,
       but in any case somebody who knows a secret originally held only by the
       creator of the seal.  The seal is called a _p_u_b_l_i_c _k_e_y.

       Unfortunately, the creator of the seal is often an insecure machine, or
       an  untrustworthy  central  agency, but most of the time seals are kept
       secure.

       One popular cryptographic program is ppggpp.

SSEEEE AALLSSOO
       pgp(1), identd(8), qmail-header(8)


                                                                  forgeries(7)