|
Depends on the protocol the e-mails are sent via.
If it's plain unencrypted SMTP, then yes, just use something like Wireshark, to intercept the network traffic.
|
|
|
|
|
Yes, it is SMTP, But then Wireshark should be on all time... is that right?
Thank you Storm-blade.
|
|
|
|
|
Not really. There can be simple TCP dump that sends the all (or event better - filtered by ports 25 & 587) traffic to another box that stores it to be read by wireshark later on other machine.
Or it can be custom software using pcap that reads the TCP flow and extracts just the messages.
There are many possibilites...
|
|
|
|
|
ahm... ok... 
|
|
|
|
|
Easiest way would be to connect to the users computers using default shares and copy the PST files and then you could load them up and read all emails if you wanted.
Could also sniff the network traffic and grab the emails that way, but much more difficult to do.
Michael Martin
Australia
"I controlled my laughter and simple said "No,I am very busy,so I can't write any code for you". The moment they heard this all the smiling face turned into a sad looking face and one of them farted. So I had to leave the place as soon as possible."
- Mr.Prakash One Fine Saturday. 24/04/2004
|
|
|
|
|
Thank you for your answer Michael, I don't want to do that and moreover that possibility of getting access to those computers is not there, so the only way would be to sniff the network traffic... 
|
|
|
|
|
Joan Murt wrote: Thank you for your answer Michael, I don't want to do that and moreover that possibility of getting access to those computers is not there, so the only way would be to sniff the network traffic...
I know you didin't want to do this personally which is why I was hapy to provide the answer.
If the computers are all on the same network they can be access by \\ComputerName\C$ ot \\IpAddress\C$, if you have the Local Administrator password connection would be a snap. If the computers are all members of a Domain then it would be even easier by anyone with Domain Administrator priviliges.
Michael Martin
Australia
"I controlled my laughter and simple said "No,I am very busy,so I can't write any code for you". The moment they heard this all the smiling face turned into a sad looking face and one of them farted. So I had to leave the place as soon as possible."
- Mr.Prakash One Fine Saturday. 24/04/2004
|
|
|
|
|
so nobody else has actual physical access to the computers yes?
"mostly watching the human race is like watching dogs watch tv ... they see the pictures move but the meaning escapes them"
|
|
|
|
|
Nobody... 
lol...
|
|
|
|
|
I realise this does not really help but the solution to this issue is to have a policy that anything that would be a security risk should never be sent in an email...
I know after I have said this that even with these policies in place people still send sensitive information in emails...
It's the policy adopted where I work and we are very careful with regards to this.
With regards to sniffing a wireless network - if the data is encrypted it is a fairly difficult thing to do - unencrypted wireless networks are very easy to sniff the data from, there is free software out there that you can install on a laptop that will enable you to sit outside a building with an unencrypted wireless network and see everything going across it..
Continuous effort - not strength or intelligence - is the key to unlocking our potential.(Winston Churchill)
|
|
|
|
|
I'm not sure it can - if you give connections to the internet then unless you heavily restrict the sites that can be visited then how do you prevent them from sending web-based emails (even from something like 10 minute mail)? If nothing else, even disposable email suppliers allow replies...
Ideological Purity is no substitute for being able to stick your thumb down a pipe to stop the water
|
|
|
|
|
Anything sent unencrypted (i.e. over SMTP, POP3 or HTTP) can be intercepted trivially by the owner of a machine through which that data passes, if they so wish. Anything sent over SSL can't unless your admin has an RSA cracker available, and currently those are not thought to exist. So send anything you care about through an encrypted connection (e.g. by using a https:// version of a webmail client or an email server which supports SMTP/POP3 over SSL).
|
|
|
|
|
The easy option for an admin wanting to snoop encrypted is to install an HTTPS proxy and add the proxy to the list of the clients approved CAs. At which point all the client's HTTPS traffic will appear to be protected by snoopbox.companyname.com instead of the normal CA.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason?
Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful?
--Zachris Topelius
Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies.
-- Sarah Hoyt
|
|
|
|
|
|
Hardly, my employer is very open about the fact that their snoopbox listens in on everything except whitelisted sites (primarily healthcare and banking). As of the last time their old cert expired they didn't have a way to automatically update firefox yet and sent out a company wide email instructing us in what buttons to click.
Did you ever see history portrayed as an old man with a wise brow and pulseless heart, waging all things in the balance of reason?
Is not rather the genius of history like an eternal, imploring maiden, full of fire, with a burning heart and flaming soul, humanly warm and humanly beautiful?
--Zachris Topelius
Training a telescope on one’s own belly button will only reveal lint. You like that? You go right on staring at it. I prefer looking at galaxies.
-- Sarah Hoyt
|
|
|
|
|
Joan Murt wrote: Can the administrator of that server somehow read the e-mails
administrator of the email server or the gateway? If the gateway then the sniffing stuff the others have mentioned. IF you are talking about the admin of the EMAIL server, then its very easy to do depending on the server and what email system it is using. We use Mdaemon here currently and it is stupidly simple for me to read somebodies email, I do not do so, but could easily if I had no ethics.
Let's face it, after Monday and Tuesday, even the calendar says WTF!
Be careful which toes you step on today, they might be connected to the foot that kicks your butt tomorrow.
You can't scare me, I have children.
|
|
|
|
|
gavindon wrote: IF you are talking about the admin of the EMAIL server
Not the case... Thank you Gavindon!
|
|
|
|
|
Yesterday morning I prepared a breakfast that cannot be matched.
In a dry pan, I fried 30 or so rashers of bacon [basically all that was defrosted] until it was all crispy. These naturally broke into small pieces. In the same pan, in the bacony lard I then scrambled a dozen eggs and just before it all set added back in the bacon pieces.
As we sat eating a knock at the door heralded the arrival of the Gods who unanimously asked for some. Family was happy with THAT breakfast. 
Panic, Chaos, Destruction. My work here is done.
Drink. Get drunk. Fall over - P O'H
OK, I will win to day or my name isn't Ethel Crudacre! - DD Ethel Crudacre
I cannot live by bread alone. Bacon and ketchup are needed as well. - Trollslayer
Have a bit more patience with newbies. Of course some of them act dumb - they're often *students*, for heaven's sake - Terry Pratchett
|
|
|
|
|
That wasn't the Gods asking for some - that was the Gods arriving to destroy you all for blasphemy! You adulterated the holy BACON with eggs! 
Ideological Purity is no substitute for being able to stick your thumb down a pipe to stop the water
|
|
|
|
|
Whilst it may be the Breakfast of the Gods, it is not The Breakfast of Champions.
See Here[^]
------------------------------------
I will never again mention that I was the poster of the One Millionth Lounge Post, nor that it was complete drivel. Dalek Dave
CCC Link[ ^]
Trolls[ ^]
|
|
|
|
|
I think it should be the dinner of champions because my wife likes to sleep in.
Just along for the ride.
"the meat from that butcher is just the dogs danglies, absolutely amazing cuts of beef." - DaveAuld (2011)
"No, that is just the earthly manifestation of the Great God Retardon." - Nagy Vilmos (2011)
|
|
|
|
|
If you're careful I am sure there is no need to wake her.
Every man can tell how many goats or sheep he possesses, but not how many friends.
|
|
|
|
|
ChrisElston wrote: If you're careful Dave I am sure there is no need to way you could wake her.
ftfy
Panic, Chaos, Destruction. My work here is done.
Drink. Get drunk. Fall over - P O'H
OK, I will win to day or my name isn't Ethel Crudacre! - DD Ethel Crudacre
I cannot live by bread alone. Bacon and ketchup are needed as well. - Trollslayer
Have a bit more patience with newbies. Of course some of them act dumb - they're often *students*, for heaven's sake - Terry Pratchett
|
|
|
|
|
No problem, I will remember that next time I sleep with your wife.
------------------------------------
I will never again mention that I was the poster of the One Millionth Lounge Post, nor that it was complete drivel. Dalek Dave
CCC Link[ ^]
Trolls[ ^]
|
|
|
|
|
Dalek Dave wrote: No problem, I will remember that next time I sleep with your wife.
beware the Kraken.
Just along for the ride.
"the meat from that butcher is just the dogs danglies, absolutely amazing cuts of beef." - DaveAuld (2011)
"No, that is just the earthly manifestation of the Great God Retardon." - Nagy Vilmos (2011)
|
|
|
|
General 
News 
Suggestion 
Question 
Bug 
Answer 
Joke 
Praise 
Rant 
Admin 
Submit an article or tip
