Solved

Can received date be faked?

Posted on 2006-10-27
2
243 Views
Last Modified: 2012-05-05
Hello,

I have a user who forwarded a spam to me (included as text unfortunately, not as an attachment).  It easily should have been blocked by our Antigen server.  Looking at the e-mail, the date on the original spam is several years old.  Now I'm in a debate with our technicians about where this date comes from.  They are telling me that the date comes from the BIOS of the sending computer.  I'm thinking that's impossible, otherwise people would be backdating e-mails all the time.

What could have caused the received date to be six years old?  (We didn't even have our Exchange server then.)
0
Comment
Question by:SmithMarty
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
2 Comments
 
LVL 9

Expert Comment

by:trenes
ID: 17818716
Hi SmithMarty,

The sending smtp server must be "anti dated" then its possible I think (99,9999%)

Regards,

Trenes
0
 
LVL 5

Accepted Solution

by:
dynamitedotorg earned 125 total points
ID: 17819207
The only message headers you can trust are those inserted by your own servers. Any other headers including Date: can be easily altered.

The Date: header itself should be inserted by the client, however this isn't always the case and so if it's missing it should get added by a proper MTA.
0

Featured Post

Free Tool: ZipGrep

ZipGrep is a utility that can list and search zip (.war, .ear, .jar, etc) archives for text patterns, without the need to extract the archive's contents.

One of a set of tools we're offering as a way to say thank you for being a part of the community.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

Learn to move / copy / export exchange contacts to iPhone without using any software. Also see the issues in configuration of exchange with iPhone to migrate contacts.
This article explains how to install and use the NTBackup utility that comes with Windows Server.
The basic steps you have just learned will be implemented in this video. The basic steps are shown to configure an Exchange DAG in a live working Exchange Server Environment and manage the same (Exchange Server 2010 Software is used in a Windows Ser…
Exchange organizations may use the Journaling Agent of the Transport Service to archive messages going through Exchange. However, if the Transport Service is integrated with some email content management application (such as an antispam), the admini…

740 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question