Beruflich Dokumente
Kultur Dokumente
send/receive emails. Note that to download your inbox you have two options, IMAP and POP3.
Both should be tested.
You will have to do the following:
1. Install/configure an email client software (outlook express) in your local host and work against
the server provided by the teachers.
2. Capture the traffic generated when transmitting/receiving emails.
3. List and explain the purpose of the commands used by the protocols.
4. Repeat the task but using the command line (telnet). Is there any difference? Why?
5. Upload the results by Friday, November 27 (23:55 Brussels time). Note that the server will be
available ONLY during Tuesday's class hours.
Index
IMAP....................................................................................................................................................2
Outlook (IMAP)...............................................................................................................................2
Recive...........................................................................................................................................2
Conclusions..................................................................................................................................4
POP.......................................................................................................................................................4
Outlook (POP)..................................................................................................................................4
Recive...........................................................................................................................................4
Send..............................................................................................................................................5
Telnet....................................................................................................................................................6
Recive (POP)....................................................................................................................................6
Conclusions..................................................................................................................................9
Send (SMTP)....................................................................................................................................9
Conclusions................................................................................................................................11
2
IMAP
Outlook (IMAP)
Recive
The CAPABILITY command requests a listing of capabilities that the server supports
14 0.040327 172.17.110.114 172.17.111.3 IMAP Request: nfyr STATUS "INBOX" (MESSAGES UNSEEN)
The SELECT command selects a mailbox so that messages in the mailbox can be accessed
34 0.101485 172.17.111.3 172.17.110.114 IMAP Response: * FLAGS (\Draft \Answered \Flagged \Deleted \Seen
\Recent)
39 0.109806 172.17.110.114 172.17.111.3 IMAP Request: y8fi UID FETCH 3:* (BODY.PEEK[HEADER.FIELDS
(References X-Ref X-Priority X-MSMail-Priority X-MSOESRec Newsgroups)] ENVELOPE RFC822.SIZE UID FLAGS
INTERNALDATE)
41 0.112914 172.17.110.114 172.17.111.3 IMAP Request: q3uw UID FETCH 1:2 (UID FLAGS)
Send
Say who I am
8 21.844664 172.17.111.3 172.17.110.114 TCP smtp > netcelera [ACK] Seq=61 Ack=15 Win=5840 Len=0
Answer if it is ok
15 21.854194 172.17.110.114 172.17.111.3 IMAP Request: bnn0 UID STORE 1 +FLAGS.SILENT (\Answered)
23 21.858576 172.17.111.3 172.17.110.114 TCP smtp > netcelera [ACK] Seq=163 Ack=2435 Win=11680 Len=0
24 21.858606 172.17.110.114 172.17.111.3 IMF from: "alex" <grupo4@ubuntu-server.test.org>, subject: Re: hello are
you there, (text/plain) (text/html)
Conclusions
The commands used by outlook and telnet are different, outlook uses another commands to get the messages
POP
Outlook (POP)
POP3-DELE receives a number (number of the message) as an argument and deletes the specified message,
located on a server by it's number.
POP3-LIST returns a string with numbers and sizes (in bytes) of all of the messages available on a POP3
5
server.
POP3-QUIT disconnects from the POP3 mail server.
POP3-TOP receives two numbers (number of the message and the lines count) as an arguments and returns a
string, containing the specified message header and the specified count of the lines of the message body.
POP3-RETR receives a number (number of the message) as an argument and returns a string with the entire
text (including header) of the specified message.
POP3-STAT returns the count of a messages available on a POP3 mail server.
Recive
1 0.000000 172.17.110.99 172.17.111.3 TCP savant > pop3 [SYN] Seq=0 Win=65535 Len=0 MSS=1460
2 0.000315 172.17.111.3 172.17.110.99 TCP pop3 > savant [SYN, ACK] Seq=0 Ack=1 Win=5840 Len=0 MSS=1460
3 0.000338 172.17.110.99 172.17.111.3 TCP savant > pop3 [ACK] Seq=1 Ack=1 Win=65535 Len=0
- Put user
6 0.011334 172.17.111.3 172.17.110.99 TCP pop3 > savant [ACK] Seq=19 Ack=14 Win=5840 Len=0
- Put pass
- Confirm de login
13 0.041518 172.17.111.3 172.17.110.99 POP S: +OK POP3 clients that break here, they violate STD53.
16 0.218169 172.17.110.99 172.17.111.3 TCP savant > pop3 [ACK] Seq=47 Ack=1161 Win=64375 Len=0
- We show it
Send
1 0.000000 172.17.110.99 172.17.111.3 TCP nokia-ann-ch2 > pop3 [SYN] Seq=0 Win=65535 Len=0 MSS=1460
2 0.000417 172.17.111.3 172.17.110.99 TCP pop3 > nokia-ann-ch2 [SYN, ACK] Seq=0 Ack=1 Win=5840 Len=0
MSS=1460
3 0.000444 172.17.110.99 172.17.111.3 TCP nokia-ann-ch2 > pop3 [ACK] Seq=1 Ack=1 Win=65535 Len=0
6 0.012942 172.17.111.3 172.17.110.99 TCP pop3 > nokia-ann-ch2 [ACK] Seq=19 Ack=14 Win=5840 Len=0
Telnet
Recive (POP)
1 0.000000 172.17.110.114 172.17.111.3 TCP owserver > pop3 [SYN] Seq=0 Win=65535 Len=0 MSS=1460
2 0.000423 172.17.111.3 172.17.110.114 TCP pop3 > owserver [SYN, ACK] Seq=0 Ack=1 Win=5840 Len=0
MSS=1460
3 0.000449 172.17.110.114 172.17.111.3 TCP owserver > pop3 [ACK] Seq=1 Ack=1 Win=65535 Len=0
5 0.003798 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=1 Ack=2 Win=5840 Len=0
7
- Conection is make now is going to send one by one packet to make the conection to user and pass
7 0.254414 172.17.110.114 172.17.111.3 TCP owserver > pop3 [ACK] Seq=2 Ack=19 Win=65517 Len=0
9 1.533932 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=3 Win=5840 Len=0
11 2.040034 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=4 Win=5840 Len=0
13 2.272370 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=5 Win=5840 Len=0
15 2.389965 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=6 Win=5840 Len=0
17 2.720175 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=7 Win=5840 Len=0
19 3.067241 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=8 Win=5840 Len=0
21 3.223092 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=9 Win=5840 Len=0
23 3.344614 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=10 Win=5840 Len=0
25 3.534657 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=11 Win=5840 Len=0
27 3.690374 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=12 Win=5840 Len=0
29 4.037590 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=19 Ack=13 Win=5840 Len=0
31 4.422935 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq19 Ack=15 Win=5840 Len=0
33 4.629146 172.17.110.114 172.17.111.3 TCP owserver > pop3 [ACK] Seq=15 Ack=42 Win=65494 Len=0
35 9.463038 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=16 Win=5840 Len=0
37 9.539725 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=17 Win=5840 Len=0
39 9.812225 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=18 Win=5840 Len=0
41 10.006555 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=19 Win=5840 Len=0
43 12.586830 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=20 Win=5840 Len=0
45 12.742430 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=21 Win=5840 Len=0
47 12.906848 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=22 Win=5840 Len=0
49 13.022009 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=23 Win=5840 Len=0
51 13.256908 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=24 Win=5840 Len=0
53 13.450766 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=25 Win=5840 Len=0
55 13.989742 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=26 Win=5840 Len=0
57 14.836689 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=42 Ack=28 Win=5840 Len=0
59 15.019190 172.17.110.114 172.17.111.3 TCP owserver > pop3 [ACK] Seq=28 Ack=66 Win=65470 Len=0
61 17.562299 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=29 Win=5840 Len=0
9
63 17.724760 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=30 Win=5840 Len=0
65 18.110235 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=31 Win=5840 Len=0
67 18.648859 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=32 Win=5840 Len=0
69 19.151343 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=33 Win=5840 Len=0
71 19.574982 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=34 Win=5840 Len=0
73 19.730725 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=35 Win=5840 Len=0
75 20.001343 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=36 Win=5840 Len=0
77 20.233677 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=37 Win=5840 Len=0
79 20.389421 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=38 Win=5840 Len=0
81 20.736588 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=39 Win=5840 Len=0
83 21.429482 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=66 Ack=41 Win=5840 Len=0
85 21.690735 172.17.110.114 172.17.111.3 TCP owserver > pop3 [ACK] Seq=41 Ack=82 Win=65454 Len=0
87 24.198939 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=82 Ack=42 Win=5840 Len=0
89 24.354612 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=82 Ack=43 Win=5840 Len=0
10
91 24.469792 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=82 Ack=44 Win=5840 Len=0
93 24.666334 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=82 Ack=45 Win=5840 Len=0
95 25.359188 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=82 Ack=47 Win=5840 Len=0
96 25.359217 172.17.111.3 172.17.110.114 POP S: +OK POP3 clients that break here, they violate STD53.
97 25.627968 172.17.110.114 172.17.111.3 TCP owserver > pop3 [ACK] Seq=47 Ack=147 Win=65389 Len=0
99 26.971230 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=147 Ack=48 Win=5840 Len=0
101 27.360440 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=147 Ack=49 Win=5840 Len=0
103 27.554546 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=147 Ack=50 Win=5840 Len=0
105 28.631975 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=147 Ack=51 Win=5840 Len=0
107 29.017459 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=147 Ack=52 Win=5840 Len=0
109 29.902551 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=147 Ack=53 Win=5840 Len=0
111 30.479822 172.17.111.3 172.17.110.114 TCP pop3 > owserver [ACK] Seq=147 Ack=55 Win=5840 Len=0
113 30.768313 172.17.110.114 172.17.111.3 TCP owserver > pop3 [ACK] Seq=55 Ack=795 Win=64741 Len=0
Conclusions
With telnet it send a character with every fragment
Send (SMTP)
EHLO: to start the service
MAIL FROM: to specify what is the sender of the email
RCPT FROM: to specify what is the receiver of the email
11
- Mail from
3 0.000593 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=1 Ack=42 Win=5840 Len=0
- Ok all its ok
5 0.160435 172.17.110.114 172.17.111.3 TCP drip > smtp [ACK] Seq=42 Ack=15 Win=65126 Len=0
8 9.696422 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=15 Ack=81 Win=5840 Len=0
- Ok all its ok
10 9.894266 172.17.110.114 172.17.111.3 TCP drip > smtp [ACK] Seq=81 Ack=29 Win=65112 Len=0
13 15.004616 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=29 Ack=87 Win=5840 Len=0
15 15.143971 172.17.110.114 172.17.111.3 TCP drip > smtp [ACK] Seq=87 Ack=66 Win=65075 Len=0
16 25.051908 172.17.111.3 224.0.0.251 MDNS Standard query PTR 30.110.17.172.in-addr.arpa, "QM" question
18 25.773443 172.17.110.114 172.17.111.3 SMTP C: Subject:el fin del mundo se acerca, dame dinero si quieres
evitarlo
20 25.774118 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=66 Ack=156 Win=5840 Len=0
22 29.229854 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=66 Ack=158 Win=5840 Len=0
25 40.304605 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=66 Ack=210 Win=5840 Len=0
26 40.304635 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=66 Ack=212 Win=5840 Len=0
28 41.112244 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=66 Ack=214 Win=5840 Len=0
30 44.765241 172.17.110.114 172.17.111.3 IMF subject: el fin del mundo se acerca, dame dinero si quieres
evitarlo\r\n,
31 44.765980 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=66 Ack=215 Win=5840 Len=0
32 44.766009 172.17.111.3 172.17.110.114 TCP smtp > drip [ACK] Seq=66 Ack=217 Win=5840 Len=0
34 45.001681 172.17.110.114 172.17.111.3 TCP drip > smtp [ACK] Seq=217 Ack=102 Win=65039 Len=0
Conclusions
Is the same as with outlook