Spy Journal Tech Tips

Saturday, June 18, 2005

Maybe its not a spoof - how to tell

16/8/05 updated this to remove identifying references to actual names or emails.

Rohan writes:
Mate to be honest I think this is a legit email a few things show that.

#1 : the received From line highlighted in red shows it originated from a mail server puntd2.cc.uga.edu the account name on that was mirapoint
#2: The fact that there is a CC line highlighted in green.
#3: The X-Priority details(in pink) show that it was sent by a mime server and could be questionable but the message ID - shown in black shows it came from the right mail server

Email header
Return-path: < ____@uga.edu>
Envelope-to: tim@jethroconsultants.com
Delivery-date: Fri, 17 Jun 2005 04:51:24 +1000
Received: from [128.192.1.121] (helo=puntd2.cc.uga.edu ident=mirapoint)
by apollo.unknowndns.net with esmtp (Exim 4.50)
id 1DizSW-0006XF-9f
for tim@jethroconsultants.com; Fri, 17 Jun 2005 04:51:24 +1000
Received: from maggiecube (43.cpe.atlantabroadband.com [64.30.174.43] (may be forged))
by puntd2.cc.uga.edu (MOS 3.5.9-GR)
with SMTP id BKK61695 (AUTH via LOGINBEFORESMTP);
Thu, 16 Jun 2005 14:51:18 -0400 (EDT)
From: "S___ T____" < ____@uga.edu>
To: < tim@jethroconsultants.com>
Cc: < _____@gmail.com>
Subject: Jethro consultants
Date: Thu, 16 Jun 2005 14:51:09 -0400
Message-ID: < KOEFIGDLODJGFCHEKCLOAEFJCNAA.____@uga.edu>
MIME-Version: 1.0
Content-Type: multipart/related;
boundary="----=_NextPart_000_0015_01C57282.D53EBA20"
X-Priority: 3 (Normal)
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook IMO, Build 9.0.6604 (9.0.2911.0)
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
Importance: Normal

Microsoft stuff, Linux stuff, Visual Basic stuff, Coldfusion and PHP stuff and other geeky stuff.

Welcome

Welcome to the Tech Tips blog. Hints and tips for programmers, sysadmins and web developers and other geeky stuff that didn't fit anywhere else.

Advertisement

Subscribe Me

• RSS Atom Feed

Previous Posts

• Spoof emails
• Picasa updates
• Brothers In Arms
• What's to come from Google, Yahoo and Microsoft?
• Configuring a D-Link DI624+
• Case Mod Supplies
• Make Yoda From A Single Piece of Paper
• Tech Tip of the Year
• PhotoShop workflow
• Google Sitemaps (Beta)

My Blogs and Websites

• Spy Journal Home
• Spy Journal Archives
• Personal Blog
• Excel Tips Blog
• Blog Tips Blog
• Tech Tips Blog
• Urban Space Novel
• Photo Archive
• Parklife Results
• Parklife Soccer Club Website
• KROSTech LAN Parties
• Jethro Management
• Jethro Consultants
• Oz Bush Poet

Tech Links

• Scobleizer
• Robin Good
• LinuxQuestions.org
• Lockergnome
• CSS & Webdesign Workshop
• Greg Ashbaugh Gadgets

Links

• Internode ADSL
• Internode Games Server
• Internode Streaming Radio
• Computer Alliance
• Connect2us
• 
• 
• 
• 
• 
• 
• 
• 

Copyright Notice. All documents and text contained in this web site www.spyjournal.biz and sub pages is copyright material of Jethro Management (c) 2004 unless noted as being copyright material of someone else. No public reproduction of the content on this site in any form is permitted without express written permission.

Unless otherwise expressly stated, all original material of whatever nature created by Tim Miller and included in this weblog and any related pages, including the weblog's archives, is licensed under a Creative Commons License.