Home page logo

basics logo Security Basics mailing list archives

Re: Tracing Threatening Email to an IP Address
From: Radu Oprisan <radu () securesystems ro>
Date: Thu, 01 Feb 2007 22:39:29 +0200

ka4731 () aol com wrote:
My friend and I received a threatening email from an anonymous yahoo account.  We believe this may have come from one 
of my friend's coworkers because the header information was traced back as far as the IP address of the Cisco Pix 
firewall within my friend's company network.  All emails I receive from my friend have the IP address of his computer 
within his network.   Why is it that the anonymous email header doesn't tie me to a computer or work station just 
like my friend but only shows the IP of the firewall?  

Your problem lies in the fact that anonymous mailers often do not send
full e-mail headers, thus making them anonymous. They only send enough
to get to the destination account. Most of these e-mails, i think, are
currently discarded by antispam systems. In one word, your chances are:

You might learn to use 72 column wrapping or, at least try to hit enter
once in a while when you're writing an e-mail.

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]