Re: fake email

From: Wary (
Date: 08/10/04

Date: Tue, 10 Aug 2004 10:37:35 GMT

"Juergen Nieveler" <> wrote in message
> "Wary" <> wrote:
> > How do I detect if this has been done?
> Check the header generated by your mailserver on delivery (the line
> saying where he received the mail from) to see if it matches the rest
> of the headers (coming from the same ISP, for example).
> Everything else can be faked, and there's no way to tell if it is.

Does this extract from a SpamCop report show the headar is a fake?

Parsing header:

Received: from ([]) by
(InterMail vM. 201-229-121-137-20020806) with ESMTP id
<> for <x>; Fri, 6
Aug 2004 13:30:06 +0100 found
host = (cached)
host (checking ip) =
Possible spammer:
Received line accepted
Relay trusted (

Received: from mail by with local id 1Bt3qz-000OLg-00 for x;
Fri, 06 Aug 2004 16:29:45 +0400


Received: from [] by with HTTP; Fri, 06 Aug 2004
16:29:45 +0400
no from found
host (getting name) no name
Possible spammer:
Possible relay: not listed in has already been sent to relay testers
Received line accepted