Free Weekly Tech Newsletter

Demosthenes · 11-04-2000, 10:56 AM

I have always wondered how some people can purposefully leave out header information. This is notoriously common among the spam mailing companies who try to sell you pencils that increase your longevity or something equally stupid, and who often leave out their return address. In some cases, the sender header is completely left out, other times it is there, but it is blank or has something other than a real address. Mailing lists also do this, but leave out the sender part of the header and only says who sent it.

How do they do that?

Respectfully,

Demosthenes

Statica · 11-04-2000, 11:11 AM

While mass mailers/mail-daemons/mail-lists do have the ability to "play" with the sendmail programs, the headers can't be spoofed for the most part. Email programs/clients like Outlook, Eudora etc. can merely be fooled into showing off the wrong information. They follow specific rules to display the information that you commonly represent as from: to: and subject: lines .. and when confused start displaying information that one thinks is gibberish. In essence if you were to use email, the size of the entire mail is about 2K+ the size of the data you actually typed, this is becos of the footprint email carries in the form of headers. Most sendmail programs do log access and this is always transmitted through.
By the same token, most email clients available for personal use also send mail that is in accordance to the information they understand. Its very simple to "APPARENTLY" spoof addresses.

Hence when fighting spam, you dont necessarily complain to the admin of the domain of the person who apparently asks for a reply [if you want to buy those pencils] but to the admin of the server whose sendmail was invoked to email you.

If only ppl in the industry would be careful enough to (a) disallowing RELAYING (b) install sendmails that are "smart" ie. check syntax of addresses (c) log to check for mass mailings... the internet would be more of a spamfree zone.

If you use OE .. select any mail that you receive and press ALT+Enter [for properties] the details will show u the entire identity of the person, including the IP used [in most cases]

Garyfl · 11-04-2000, 01:20 PM

Use Ctrl + F3 in Oulook Express to give you the complete header. Then report it to Spam Cop. Use copy, paste.

11-04-2000, 10:56 AM	#1
Demosthenes Member (10 bit) Join Date: Mar 1999 Location: Random Posts: 997	I have always wondered how some people can purposefully leave out header information. This is notoriously common among the spam mailing companies who try to sell you pencils that increase your longevity or something equally stupid, and who often leave out their return address. In some cases, the sender header is completely left out, other times it is there, but it is blank or has something other than a real address. Mailing lists also do this, but leave out the sender part of the header and only says who sent it. How do they do that? Respectfully, Demosthenes Share Share this post on Digg Del.icio.us Technorati Twitter

11-04-2000, 11:11 AM	#2
Statica Premium Member Join Date: Jun 1999 Posts: 9,231	You cant preclude headers... While mass mailers/mail-daemons/mail-lists do have the ability to "play" with the sendmail programs, the headers can't be spoofed for the most part. Email programs/clients like Outlook, Eudora etc. can merely be fooled into showing off the wrong information. They follow specific rules to display the information that you commonly represent as from: to: and subject: lines .. and when confused start displaying information that one thinks is gibberish. In essence if you were to use email, the size of the entire mail is about 2K+ the size of the data you actually typed, this is becos of the footprint email carries in the form of headers. Most sendmail programs do log access and this is always transmitted through. By the same token, most email clients available for personal use also send mail that is in accordance to the information they understand. Its very simple to "APPARENTLY" spoof addresses. Hence when fighting spam, you dont necessarily complain to the admin of the domain of the person who apparently asks for a reply [if you want to buy those pencils] but to the admin of the server whose sendmail was invoked to email you. If only ppl in the industry would be careful enough to (a) disallowing RELAYING (b) install sendmails that are "smart" ie. check syntax of addresses (c) log to check for mass mailings... the internet would be more of a spamfree zone. If you use OE .. select any mail that you receive and press ALT+Enter [for properties] the details will show u the entire identity of the person, including the IP used [in most cases] Share Share this post on Digg Del.icio.us Technorati Twitter

11-04-2000, 01:20 PM	#3
Garyfl Member (7 bit) Join Date: Jun 2000 Location: Brandon, Fl. Posts: 121	Use Ctrl + F3 in Oulook Express to give you the complete header. Then report it to Spam Cop. Use copy, paste. Share Share this post on Digg Del.icio.us Technorati Twitter

Thread Tools	Search this Thread
Show Printable Version Email this Page	Search this Thread: Advanced Search
Display Modes	Rate This Thread
Linear Mode Switch to Hybrid Mode Switch to Threaded Mode	Rate This Thread:

Need Some Help? Type Your Keywords Here:

Still Need Help? Type Your Keywords Here:

Free Weekly Tech Newsletter

Subscribe to THE INSIDER

Need Some Help? Type Your Keywords Here:

Still Need Help? Type Your Keywords Here:

Free Weekly Tech Newsletter