Search DominoPower's 11,433 Lotus-related article archive 
Home
EasyPrint
News details Click here for the RSS feed's XML code. This is not a browser URL.
Articles-only Click here for the RSS feed's XML code. This is not a browser URL.
Twitter Feed Click here for the Twitter feed.
The White House email controversy: who runs GWB43.COM? (continued)

Who runs GWB43.COM?
It turns out that GWB43.COM is managed by a domain name server located at SMARTECHCORP.NET and another at TRESPASSERS-W.NET. We wanted to confirm that GWB43.COM was, in fact, the RNC domain we'd seen discussed, so we also did a "whois" lookup on GWB43.COM. A whois lookup is the Internet's way of telling you who owns the domain. As Figure B shows, GWB43.COM is owned by the RNC (the Republican National Committee).

FIGURE B
GWB43.COM is owned by the RNC. Roll over picture for a larger image.

Interestingly, the administrative and technical contacts for the GWB43.COM domain show as an email address on the RNCHQ.ORG domain. Finance guys follow the money. We geeks follow the domains. So, who runs the RNCHQ.ORG domain? As you can see in Figure C, the domain name servers are again SMARTECHCORP.NET and TRESPASSERS-W.NET.

FIGURE C
RNCHQ.ORG also uses the same two domain name servers. Roll over picture for a larger image.

Clearly, we've confirmed SMARTECHCORP.NET and TRESPASSERS-W.NET as operators of the RNC domains.

Our next step was to find out who operates the GWB43.COM email server.

What do we know about the GWB43.COM mail server?
Email servers are identified to other email servers by what are called MX (or Mail Exchange) records. Each server that gets email has an MX record that's managed by the domain name server. So, our step was to identify the MX record for GWB43.COM, which we did, as shown in FIGURE D.

FIGURE D
Now we know where mail goes when it's sent to GWB43.COM. Roll over picture for a larger image.

Now we know where mail goes when it's sent to GWB43.COM. It goes to one of two servers: MAILSCAN1.SMARTECHCORP.NET and MAILSCAN2.SMARTECHCORP.NET. So, once again, we bump into SMARTECHCORP.NET.

Before we delve into further into SMARTECHCORP.NET or the GWB43.COM email server, it's important to understand some of the inherent limitations of our research. As you well know, email goes in and email goes out. The only thing public Internet records can show us is where a message first goes when it leaves an email client and it's headed for GWB43.COM.

Whether the email lands at the first server, the publicly facing one according to the network records, or is stored and then forwarded on, is something we can't see from the outside. So we can't tell if Karl Rove or another member of the President's staff is accessing incoming mail directly off these SMARTECHCORP.NET servers.

Likewise, if someone with a GWB43.COM email address sends an email, that email might travel through the server we find, or it might go through a completely different path. We can't tell that specifically from public records.

But we can find out a little more about MAILSCAN1.SMARTECHCORP.NET and MAILSCAN2.SMARTECHCORP.NET. Figure E shows an SMTP (Simple Mail Transport Protocol) session, connecting with MAILSCAN1.SMARTECHCORP.NET.

FIGURE E
This is a Postfix server. Roll over picture for a larger image.

The key piece of information is in the banner field of the session. The key word there is "Postfix", which is the name of a well-respected open-source email server program. We did a test on MAILSCAN2.SMARTECHCORP.NET and got exactly the same results.

« Previous  ·  1  ·  2  ·  3  ·  4  ·  5  ·  6  ·  Next »
Other articles you might like
Home > Special Reports > White House email controversy (25 articles)
   Analysis: Spying Chinese temptress steals senior Brit's BlackBerry
   U.S. government agencies' cyber-security and record-keeping worse than previously thought
   The White House email controversy: it's time for a Special Prosecutor
Get Weekly Email Updates
Subscribe to our regular weekly email newsletter. It's packed with tips, reviews, deep analysis, and the latest news.
 
Recent DominoPower Articles
Application development, William Shatner, and the origin of the universe
Learn Domino Designer 8.5 for free
The (near) future of Sametime, Quickr, Connections, and Symphony
Inside the IBM Innovations lab
Lotusphere 2010: Hot fixes and cool news for Notes, Domino, and LotusLive
Lotusphere 2010: mobility and collaboration
2010: A Lotusphere of change
Latest Lotus Headlines
Remember Young Admins...there are 2 files
WebSphere Portal 6.1.0.2 and Lotus Domino 8.5
The CKEditor - with Domino
How not to crash in LotusScript
IBM Lotus to Google Apps Migration Remorse
Webcast Series: Mobile Collaboration with Lotus Software
Domino Login Control for Mobile Apps
>> Read all the news
More from the ZATZ journals
Computing Unplugged: The iPad defenders have spoken
David Gewirtz Online: CNN commentary and analysis
OutlookPower: More about disappearing text
-- Advertisement --

Learn Notes and Domino 8 at your place and pace!
Learn Notes and Domino in your office and/or home! TLCC's highly acclaimed distance learning courses for users, developers, and admins will enhance your career and your resume.

The many included activities and demos will make you a pro! Expert instructor help is a click away.

Click here to try a FREE demo course!!

-- Advertisement --

Mark your calendar for in-depth Lotus training, May 12-14, Boston
Join experts and peers May 12-14 in Boston for educational and networking events that deliver real-world Lotus training so you can increase productivity and efficiency in your company, advance your skills, and squeeze the most from your current environment. One registration gets you into THE VIEW's Admin2010 and Lotus Developer2010.

Register by April 10 to save $200.
ZATZ Home  ·  News  ·  Back Issues  ·  Credits/Trademarks ·  Link To Us
Copyright © 1998-2010, ZATZ Publishing. All rights reserved worldwide.
Editor's Login