Jason
10-05-07, 10:22 AM
I was reading some articles yesterday and found this interesting topics. thought I will share this with you guys. its very useful to know (if you don’t).
One truism in forensics is that every contact leaves evidence. That's true at a crime screen in the real world and also true on the Internet. You might think you can get away with posting an anonymous message somewhere, or even sending an anonymous e-mail via a bogus Web mail account, or perhaps writing anonymous malicious code. You can't. Not entirely. At this year's Black Hat Briefings in Las Vegas, Dr. Neal Krawetz, of Hacker Factor Solutions, demonstrated how he and others have started to use nonclassical digital forensics techniques. By analyzing the words used or the keyboard characters typed, he can tell a lot about these supposedly anonymous online authors....
you can read the rest at = http://reviews.cnet.com/4520-3513_7-6647105-1.html
I found another interesting sites tells about how they trace an email. ppl who think that they can get way of email harassing, please think again before you send an email.
interesting...angry-smiley
The ownership of an IP address can be determined by contacting a "reverse look-up" or "who is" service on the Internet will identify the Internet service provider that owns a particular IP address. By logging on to that site and punching in a particular IP address, the owner of that address will be revealed. So, the first step is to locate the e-mail’s header, identify the sender’s IP address in the header, and determine the Internet service provider that is the registered holder of that IP address.
Subpoena a phantom?
Once the IP address has been traced to an Internet service provider, the next step is to identify the precise account that used the IP address on the date and time when the e-mail message was sent. Doing so generally requires the issuance and service of a subpoena.
Nevertheless, before taking legal action to obtain a subpoena, the person in the Internet service provider’s legal department who is responsible for subpoena compliance should be contacted. He or she should be advised that a subpoena is forthcoming and that any and all responsible data or documents should be preserved, including any and all IP addresses associated with the e-mail at issue.
Additionally, the original e-mail message, including its full header, should reported to the local police or the FBI, if appropriate, and to the e-mail "abuse address" provided by the Internet service provider through which the e-mail was sent.
you can read all = http://www.ebglaw.com/showarticle.aspx?Show=5541
One truism in forensics is that every contact leaves evidence. That's true at a crime screen in the real world and also true on the Internet. You might think you can get away with posting an anonymous message somewhere, or even sending an anonymous e-mail via a bogus Web mail account, or perhaps writing anonymous malicious code. You can't. Not entirely. At this year's Black Hat Briefings in Las Vegas, Dr. Neal Krawetz, of Hacker Factor Solutions, demonstrated how he and others have started to use nonclassical digital forensics techniques. By analyzing the words used or the keyboard characters typed, he can tell a lot about these supposedly anonymous online authors....
you can read the rest at = http://reviews.cnet.com/4520-3513_7-6647105-1.html
I found another interesting sites tells about how they trace an email. ppl who think that they can get way of email harassing, please think again before you send an email.
interesting...angry-smiley
The ownership of an IP address can be determined by contacting a "reverse look-up" or "who is" service on the Internet will identify the Internet service provider that owns a particular IP address. By logging on to that site and punching in a particular IP address, the owner of that address will be revealed. So, the first step is to locate the e-mail’s header, identify the sender’s IP address in the header, and determine the Internet service provider that is the registered holder of that IP address.
Subpoena a phantom?
Once the IP address has been traced to an Internet service provider, the next step is to identify the precise account that used the IP address on the date and time when the e-mail message was sent. Doing so generally requires the issuance and service of a subpoena.
Nevertheless, before taking legal action to obtain a subpoena, the person in the Internet service provider’s legal department who is responsible for subpoena compliance should be contacted. He or she should be advised that a subpoena is forthcoming and that any and all responsible data or documents should be preserved, including any and all IP addresses associated with the e-mail at issue.
Additionally, the original e-mail message, including its full header, should reported to the local police or the FBI, if appropriate, and to the e-mail "abuse address" provided by the Internet service provider through which the e-mail was sent.
you can read all = http://www.ebglaw.com/showarticle.aspx?Show=5541