eScan BlogeScan Blog    eScan WebsiteeScan Website    eScan ForumeScan Forum    eScan FeedseScan Feeds     
    
Languages:     

From eScan Wiki

(Difference between revisions)
Jump to: navigation, search
Revision as of 10:53, 23 June 2015
Webmktg (Talk | contribs)

← Previous diff
Revision as of 07:09, 25 June 2015
Webmktg (Talk | contribs)

Next diff →
Line 4: Line 4:
<h2 id="mp-tfp-h2" style="margin:0; background:#95C33D; font-size:120%; font-weight:bold; border:10 solid #afa3bf; text-align:left; color:#000; padding:0.2em 0.4em">ESAT -Email Server Audit Tool</h2> <h2 id="mp-tfp-h2" style="margin:0; background:#95C33D; font-size:120%; font-weight:bold; border:10 solid #afa3bf; text-align:left; color:#000; padding:0.2em 0.4em">ESAT -Email Server Audit Tool</h2>
 +
 +<h2>DISCLAIMER</h2>
 +
 +This information and E.S.A.T. is provided to assist users of E.S.A.T. in auditing their own Mail Servers, or domains/servers for which they have been given permission to audit, in order to determine the security/troubleshoot/configuration verification, of such servers/domains. It is not intended to assist with auditing remote mail servers/domains with the intention of breaking into or exploiting emails services on those sites, or for information gathering purposes beyond those allowed by law. We hereby disclaim any responsibility for actions taken based upon the information in this article and/or E.S.A.T. and/or any other Article based on E.S.A.T., and urge all who seek information towards a destructive end to reconsider their life, and do something constructive instead.
 +
 +<h2> About E.S.A.T.</h2>
 +
 +<B>E.S.A.T. will assist administrators in:</B>
 +
 +<ul>
 +<li>Troubleshooting , Configuration Verification.</li>
 +<li>Mail Server Deployment vis’a’vis the configuration of the mail server.</li>
 +<li>Securing the mail server deployment.</li>
 +</ul>
 +
 +<B>Tests of E.S.A.T.</B>
 +
 +<ul>
 +<li>Open Relay Test</li>
 +<li>Email Spoof Test</li>
 +<li>Sender Domain Verification Test</li>
 +<li>Auth Test</li>
 +<li>Auth Spoof Test</li>
 +<li>Auth Relay Test</li>
 +<li>DHA and DOS</li>
 +</ul>
 +
 +&nbsp;
 +[[Image:Testing Scenarios.jpeg|center]]
 +&nbsp;
 +
 +Execute esat.exe file from %Program Files%\MailScan\
 +
 +The initial window will display local system hostname and IP address. Click on Yes to proceed with the email server audit activity.
 +
 +&nbsp;
 +[[Image:Disclaimer.jpeg|center]]
 +&nbsp;
 +
 +This is the initial screen for the E.S.A.T.. Fake email id is the only field which cannot be changed.
 +
 +&nbsp;
 +[[Image:Email Server Audit Tool .jpeg|center]]
 +&nbsp;
 +
 +Selecting Test Auth, will conduct Auth related tests as well as Non-auth i.e. those tests defined for MX servers, based on user selection i.e. Test Single IP or test from external, the tests will be for individual IPs or for the MX records.
 +
 +External IP is always displayed for your convenience.
 +
 +<h3> TESTING MX RECORDS</h3>
 +
 +&nbsp;
 +[[Image:Testing MX Records.jpeg|center]]
 +&nbsp;
 +
 +All the published MX records will be tested. Prior to this test ensure that your system is allowed to connected to Port 25.
 +Refer to the Network Diagram for the deployment of the test scenario.
 +
 +Administrator may also deploy E.S.A.T. on the outgoing mail server and start the audit of the domain which is foreign to his/her organization.
 +Eg. My local domain is mwti.net but whenever I send a mail to yahoo.com its getting rejected. Administrator may deploy E.S.A.T. directly on the Outgoing Mail server or use a system which has the same Outgoing Internet IP as that of the outgoing mail server.
 +
 +In case, your outgoing mail server‘s IP is blacklisted then it will be reflected in the Audit Report.
 +
 +If your outgoing IP is different then RBL Listing is effective for this particular IP.
 +
 +This test can be conducted by end-users who often complain that they are unable to send mails to their own mail server.
 +
 +<h3>TESTING A SINGLE IP</h3>
 +
 +&nbsp;
 +[[Image:Testing a Single IP.jpeg|center]]
 +&nbsp;
 +
 +As mentioned earlier, this will test a single IP. The IP can be a LAN IP or a WAN IP or out in the wild Internet based IP.
 +
 +When the IP defined belongs to LAN/WAN, this simply means that as an administrator you are testing the effectiveness of your mail servers from the user point of view and considering most mail server allow relay etc etc for Internal Lan / WAN IPs , this will help you in understanding your Mail server Configuration.
 +
 +Secondly, use this test from all possible Gateways, ie. Prior to each test configure your system to be a part of the networks whose gateway-email server relationship needs to be tested.
 +
 +<h3>RESULTS</h3>
 +
 +Once all the audit tests are completed, it will give confirmation message and the logs will be saved in the mentioned location.
 +
 +&nbsp;
 +[[Image:Results.jpeg|center]]
 +&nbsp;

Revision as of 07:09, 25 June 2015

Contents

MailScan version 6.x


ESAT -Email Server Audit Tool

DISCLAIMER

This information and E.S.A.T. is provided to assist users of E.S.A.T. in auditing their own Mail Servers, or domains/servers for which they have been given permission to audit, in order to determine the security/troubleshoot/configuration verification, of such servers/domains. It is not intended to assist with auditing remote mail servers/domains with the intention of breaking into or exploiting emails services on those sites, or for information gathering purposes beyond those allowed by law. We hereby disclaim any responsibility for actions taken based upon the information in this article and/or E.S.A.T. and/or any other Article based on E.S.A.T., and urge all who seek information towards a destructive end to reconsider their life, and do something constructive instead.

About E.S.A.T.

E.S.A.T. will assist administrators in:

  • Troubleshooting , Configuration Verification.
  • Mail Server Deployment vis’a’vis the configuration of the mail server.
  • Securing the mail server deployment.

Tests of E.S.A.T.

  • Open Relay Test
  • Email Spoof Test
  • Sender Domain Verification Test
  • Auth Test
  • Auth Spoof Test
  • Auth Relay Test
  • DHA and DOS

 

 

Execute esat.exe file from %Program Files%\MailScan\

The initial window will display local system hostname and IP address. Click on Yes to proceed with the email server audit activity.

 

 

This is the initial screen for the E.S.A.T.. Fake email id is the only field which cannot be changed.

 

 

Selecting Test Auth, will conduct Auth related tests as well as Non-auth i.e. those tests defined for MX servers, based on user selection i.e. Test Single IP or test from external, the tests will be for individual IPs or for the MX records.

External IP is always displayed for your convenience.

TESTING MX RECORDS

 

 

All the published MX records will be tested. Prior to this test ensure that your system is allowed to connected to Port 25. Refer to the Network Diagram for the deployment of the test scenario.

Administrator may also deploy E.S.A.T. on the outgoing mail server and start the audit of the domain which is foreign to his/her organization. Eg. My local domain is mwti.net but whenever I send a mail to yahoo.com its getting rejected. Administrator may deploy E.S.A.T. directly on the Outgoing Mail server or use a system which has the same Outgoing Internet IP as that of the outgoing mail server.

In case, your outgoing mail server‘s IP is blacklisted then it will be reflected in the Audit Report.

If your outgoing IP is different then RBL Listing is effective for this particular IP.

This test can be conducted by end-users who often complain that they are unable to send mails to their own mail server.

TESTING A SINGLE IP

 

 

As mentioned earlier, this will test a single IP. The IP can be a LAN IP or a WAN IP or out in the wild Internet based IP.

When the IP defined belongs to LAN/WAN, this simply means that as an administrator you are testing the effectiveness of your mail servers from the user point of view and considering most mail server allow relay etc etc for Internal Lan / WAN IPs , this will help you in understanding your Mail server Configuration.

Secondly, use this test from all possible Gateways, ie. Prior to each test configure your system to be a part of the networks whose gateway-email server relationship needs to be tested.

RESULTS

Once all the audit tests are completed, it will give confirmation message and the logs will be saved in the mentioned location.

 

 


eScan Copyright © 2015 MicroWorld Technologies Inc.- AntiVirus & Content Security.       Send your feedback to solutions@escanav.com eScan Wiki

    Privacy policy  About eScan Wiki  Disclaimers