Re[4]: question - how can email be sent from me that I didn't send
Sunday, June 23, 2002, 9:05:22 PM, you wrote: JA Try looking at the Full headers for the email... The JA From: header is easily forged, as you can tell, and JA can also be guessed from the recent Klez virus (or 99% JA of spam) ;) Yeah, I see a lot of those too. JA By tracing down the recieved headers, you JA can work out the path it took, and ultimately the JA senders ISP, providing they didn't use some obscure JA proxy server to send through. It sounds reasonable, and I've apparently lost the mail, (I would have sent the header) but there was no path .. no received headers .. it was as though I really had sent the mail directly from myself to myself. The only tipoff that I *hadn't* done that was that I have a very old email address, and originally because of some peculiarity with the server it had to be used as '[EMAIL PROTECTED]' .. I didn't know it still worked in that form, but I haven't used it that way for years. Evidently these lists persist for a very long time, because it has to be at least 6 years old. Maybe that explains my really severe spam problem :-) JA Glad I could help a little :) Yeah, you did, but it's still something of a mystery :-) Lynn -- mailto:[EMAIL PROTECTED] * * *Aun Aprendo I'd rather be WARP'ed* * * Team OS/2 http://www.sites.onlinemac.com/hawthorne/ Current Ver: 1.60q FAQ: http://faq.thebat.dutaint.com Unsubscribe: mailto:[EMAIL PROTECTED] Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Bug Reports: https://www.ritlabs.com/bt/
Re[4]: question - how can email be sent from me that I didn't send
Sunday, June 23, 2002, 9:11:06 PM, you wrote: JA Hi Lynn, JA On Sun, 23 Jun 2002 21:00:08 -0700, you wrote: Thanks .. Is there any way, apart from intuitive deduction, to identify which information is forged, and which genuine? JA Take a quick look at the headers... some (helpful) mail servers put in may be JA forged headers along with the details. [snip] JA Notice the line says it's from caramail.com, then has JA the real host details of a dial up connection in the JA brackets... clearly the spammer attempted to forge the JA header, but the mail server pointed it out. But apart JA from actually sitting there, and processing them, no JA real quick way. I guess you could submit it to JA spamcop, and get spamcop to do all the header JA processing for you, and when you have the details, JA cancel the report... just an idea ;) OK .. if my friend's harassment problem persists, I may do one of those things. It's always nice to have alternatives, and I'm an info junkie anyway. Thanks! Lynn -- mailto:[EMAIL PROTECTED] * * *Aun Aprendo I'd rather be WARP'ed* * * Team OS/2 http://www.sites.onlinemac.com/hawthorne/ Current Ver: 1.60q FAQ: http://faq.thebat.dutaint.com Unsubscribe: mailto:[EMAIL PROTECTED] Archives : http://tbudl.thebat.dutaint.com Moderators : mailto:[EMAIL PROTECTED] TBTech List: mailto:[EMAIL PROTECTED] Bug Reports: https://www.ritlabs.com/bt/
