If you have a look at the url post the actual site address is written in the code. It's the same as the Westpac email I got last week http://olb.westpac.com.au:UserSession=2f4d0zzz899amaiioiiabv5589955&userrstste=SecurityUpdate&[EMAIL PROTECTED]
This is where they are actually comming from. 69.61.29.81
Thanks for that. But I am not trying to track these people down. If I was then your answer would be very good. What I am trying to do is to learn how to work backwards through the delivery chain to work out where the email originated.
Regards, Andrew -- SLUG - Sydney Linux User's Group - http://slug.org.au/ More Info: http://lists.slug.org.au/listinfo/slug
