Sorry about that. It's kind of a favorite of mine--an all-in-one tool for WHOIS, Traceroute, Ping, NSLookup, SMTP relay, etc. http://www.samspade.org/ is the site. You can't beat the price.
One of the tools is an SMTP parser. You can paste in the header from an email and get semi-detailed results that walk you through the details. HTH, John ----- Original Message ----- From: "Kevin Wigle" To: "John Allhiser" ; Sent: Saturday, December 22, 2001 4:04 PM Subject: Re: Free BOOT CAMP LABS! [7:29926] > ok, I've never been up on the application side of things.......... > > So, what is Sam Spade?? > > Kevin Wigle > > ----- Original Message ----- > From: "John Allhiser" > To: > Sent: Saturday, 22 December, 2001 14:37 > Subject: Re: Free BOOT CAMP LABS! [7:29926] > > > > It was spoofed. Plug the header into Sam Spade to get a feel for how > these > > are interpreted. > > It can be done several different ways, the crudest of which is to telnet > to > > port 25 and begin an RFC 2821/2822 compliant telnet session. > > > > The SMTP logs on the Group Study list server may, however, show a bit more > > in regards to the connection. > > > > ----- Original Message ----- > > From: "Kevin Wigle" > > To: > > Sent: Saturday, December 22, 2001 12:27 PM > > Subject: Re: Free BOOT CAMP LABS! [7:29926] > > > > > > > so.................. > > > > > > we can suspect who this came from but.............. > > > > > > I've always been interested in how to read email headers and source - > can > > > anyone interpret the headers on this one for me?? > > > > > > Kevin Wigle Message Posted at: http://www.groupstudy.com/form/read.php?f=7&i=29943&t=29926 -------------------------------------------------- FAQ, list archives, and subscription info: http://www.groupstudy.com/list/cisco.html Report misconduct and Nondisclosure violations to [EMAIL PROTECTED]