[nycbug-talk] Mail message headers

G. Rosamond george
Sat Jan 31 23:21:48 EST 2004

->Anyone knows of a good link on how to read message headers?
->I have an idea, but would welcome understanding it better.
->In particular how to determine the point of origin.
->I don't think the email below came from me,but want to double check.
->Am I reading the email below correctly by saying it was sent 
->from IP
->---------- Forwarded message ----------
->Date: 1 Feb 2004 01:55:20 -0000
->From: System Anti-Virus Administrator <postmaster at hrnoc.net>
->To: francisco at natserv.com
->Subject: virus found in sent message "hello"
->Attention: francisco at natserv.com
->A virus was found in an Email message you sent.
->MAILFROM: francisco at natserv.com
->Received: from user-24-236-105-243.knology.net (HELO 
->natserv.com) (
->  by mx3.hrnoc.net with SMTP; 1 Feb 2004 01:55:19 -0000
->From: francisco at natserv.com
->To: john at scalabium.com
->Subject: hello
->Date: Sat, 31 Jan 2004 20:55:33 -0500
->MIME-Version: 1.0
->Content-Type: multipart/mixed;
->	boundary="----=_NextPart_000_0004_F84A52BD.46D0F411"
->X-Priority: 3
->X-MSMail-Priority: Normal

did some googling. . . http://support.shaw.ca/networks/internetabuse.htm
check out section E.

this virus has been spoofing addresses left and right.  up to 85% of my
mail has been this virus.

it would be logical that if mail servers were performing dns lookups,
this whole mess would cease.  my domain has been rbl'd a few times, but
frankly, it's completely idiotic if mail servers aren't authenticating
incoming mail in the most basic way. . .

but then again, i wouldn't be able to send out mail via my business
domain if verizon didn't allow me to use their smtp servers. . .


More information about the talk mailing list