Except the one that provides the originating IP address. But those are hard to track.
Ed Crowley MCSE+Internet MVP kcCC+I Tech Consultant hp Services Protecting the world from PSTs and Bricked Backups! -----Original Message----- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED]] On Behalf Of Erik Sojka Sent: Friday, August 09, 2002 11:34 AM To: Exchange Discussions Subject: RE: Unsolicited Email Nobody on this should list should read the SMTP headers. > -----Original Message----- > From: Greg Deckler [mailto:[EMAIL PROTECTED]] > Sent: Friday, August 09, 2002 2:33 PM > To: Exchange Discussions > Subject: Re: Unsolicited Email > > > First, ignore the advice of reading the RFC's and headers. If an > individual signed up for a web email service such as Hotmail or Yahoo! > or brain.com.pk under false pretenses then you will have to contact > the provider to see if they can help you track down the abuser. All > the headers are going to tell you is that the email message came from > an account on www.brain.com.pk which is pretty useless since you > already know > that. They should at least be able to disable the account for > you and may > have some information related to what computer was used to access that > account. > > If the user had instead used the common SMTP hack to forge a > From address, > then the RFC's and headers would come into play. But > depending on how they > did the hack, you still would probably not be able to > determine much if > they did anything to help cover their tracks. > > As you have discovered, in the world of SMTP and free email > services, it > is extremely easy to forge the From address of an email and it is > difficult, if not impossible to track this down if the person > doing it has > any amount of a brain what-so-ever. Tell your executives to > deal because > it is the nature of SMTP and the Internet. > > > Dear List, > > > > Today, our senior executive's received Illegal/unsolicited > email with = > > the name of one of our senior executive. His name was used > on free web = > > based email service (www.brain.com.pk). My question is how > can I trace = > > the culprit. > > > > Help in this regard is really appreciated. > > > > Thanks & Regards. > > _________________________________________________________________ > List posting FAQ: http://www.swinc.com/resource/exch_faq.htm > Archives: http://www.swynk.com/sitesearch/search.asp > To unsubscribe: mailto:[EMAIL PROTECTED] > Exchange List admin: [EMAIL PROTECTED] > _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED] _________________________________________________________________ List posting FAQ: http://www.swinc.com/resource/exch_faq.htm Archives: http://www.swynk.com/sitesearch/search.asp To unsubscribe: mailto:[EMAIL PROTECTED] Exchange List admin: [EMAIL PROTECTED]