Can received date be faked?
Posted on 2006-10-27
I have a user who forwarded a spam to me (included as text unfortunately, not as an attachment). It easily should have been blocked by our Antigen server. Looking at the e-mail, the date on the original spam is several years old. Now I'm in a debate with our technicians about where this date comes from. They are telling me that the date comes from the BIOS of the sending computer. I'm thinking that's impossible, otherwise people would be backdating e-mails all the time.
What could have caused the received date to be six years old? (We didn't even have our Exchange server then.)