LUCY

User Tools

Site Tools

Trace:
mail_settings

Differences

This shows you the differences between two versions of the page.

Link to this comparison view

Both sides previous revisionPrevious revision
Next revision		Previous revision
Next revisionBoth sides next revision
mail_settings [2018/05/17 12:31] – [Catching Email Replies] lucymail_settings [2018/05/17 12:35] – [Catching Email Replies] lucy
Line 153: Line 153:
 If you want to catch email replies you have three options: If you want to catch email replies you have three options:
  
-  * (1) Define a **Reply-to header**. The reply to address is the address where email replies should be sent, instead of ‘From’. This is used if, for some reason, your ‘From’ address cannot receive replies (e.g. you do not control that domain or don't have a mail server setup for that domain). In the screenshot below you see that the email is sent from the user "mitchel@guysfromrolla.com". If the user clicks on the reply-to button in the mail, the actual reply-to address set in the header is used then (billg@microsoft.com). You should use a reply-to adress which you can actually receive. Typically phishers use generic mail adresses from gmail, yahoo etc.+{{ forwardsemails.png?600 }} 
 + 
 +  * (1) Define a **Reply-to header**. Please define that under the "scenario settings/message template" at the bottom under "advanced mail settings". The reply to address is the address where email replies should be sent, instead of ‘From’. This is used if, for some reason, your ‘From’ address cannot receive replies (e.g. you do not control that domain or don't have a mail server setup for that domain). In the screenshot below you see that the email is sent from the user "mitchel@guysfromrolla.com". If the user clicks on the reply-to button in the mail, the actual reply-to address set in the header is used then (billg@microsoft.com). You should use a reply-to adress which you can actually receive. Typically phishers use generic mail adresses from gmail, yahoo etc.
  
 {{ reply_to.png?600 }} {{ reply_to.png?600 }}
  
   * (2) Define a **Forward Mail**: LUCY is able to forward the Returning/Answering emails to an email address specified in that field. However this requires a DNS entry (MX record) on a DNS server for the sender's domain that points to LUCY. Example: You send emails as attacker@phishing-test.com and LUCY’s IP is 201.35.77.12. Then you need to define a MX record like "phishing-test.com  MX  10  201.35.77.12". Within the forward mail field you can enter your own custom mail address (user@example.com). If a user replies to "attacker@phishing-test.com" LUCY will accept this mail and then forward it to "user@example.com" (note: most register services already offer free mail/DNS packages. So if you register a phishing domain you can already setup an email forwarder for that domain and you don’t need LUCY for that).   * (2) Define a **Forward Mail**: LUCY is able to forward the Returning/Answering emails to an email address specified in that field. However this requires a DNS entry (MX record) on a DNS server for the sender's domain that points to LUCY. Example: You send emails as attacker@phishing-test.com and LUCY’s IP is 201.35.77.12. Then you need to define a MX record like "phishing-test.com  MX  10  201.35.77.12". Within the forward mail field you can enter your own custom mail address (user@example.com). If a user replies to "attacker@phishing-test.com" LUCY will accept this mail and then forward it to "user@example.com" (note: most register services already offer free mail/DNS packages. So if you register a phishing domain you can already setup an email forwarder for that domain and you don’t need LUCY for that).
 +
   * **Using a catch-all mail account for your registered domain that forwards to another mail address**: If you registered the domain through LUCY you have the ability to define for one specific mail address one mail forwarder ([[domain_configuration|see domain registration settings]]). If you want to have all mail addresses forwarded we can activate a catch all account. This Email Forwarding feature will accept all email addresses on the provider side (using the providers mail server) for a domain and forward emails to other email addresses of your choice.    * **Using a catch-all mail account for your registered domain that forwards to another mail address**: If you registered the domain through LUCY you have the ability to define for one specific mail address one mail forwarder ([[domain_configuration|see domain registration settings]]). If you want to have all mail addresses forwarded we can activate a catch all account. This Email Forwarding feature will accept all email addresses on the provider side (using the providers mail server) for a domain and forward emails to other email addresses of your choice. 
  
mail_settings.txt · Last modified: 2021/04/08 10:27 by lucy