Solved

What can you tell me about the information on this e-mail header?

Posted on 2012-03-11
7
568 Views
Last Modified: 2012-03-13
[208.104.161.76] (helo=[192.168.15.3])
      by bed.mysitehosted.com with esmtpa (Exim 4.69)
      (envelope-from <craigslist@entrusted.com>)
      id 1S6kUl-004DGy-Qa

I got a reply to one of my ads on Craigslist.
I've never seen one, that had a header like above.
Normally, well, in all "previous" cases, the person replying to my ad had a user name and a recognizable e-mail address.

The one above looks fishy to me.

What is "craigslist@entrusted.com"

I am reluctant to say, that this message came from an individual interested in my item.

Anyone have any ideas or knowledge on how to look at that header and come away with facts?
0
Comment
Question by:nickg5
  • 4
  • 2
7 Comments
 
LVL 82

Accepted Solution

by:
Dave Baldwin earned 275 total points
ID: 37707427
(envelope-from <craigslist@entrusted.com>) means that's where the message actually originated from.  If the 'From:' says it was from 'craigslist.org', you know it's being faked.
0
 
LVL 25

Author Comment

by:nickg5
ID: 37707478
I think is came from someone who works for Craigslist.

Do you come to the same conclusion?

I've got phishing messages from them before.

Does that header indicate my suspicions may be correct?
0
 
LVL 82

Expert Comment

by:Dave Baldwin
ID: 37707607
No, I don't think it came from craigslist at all.  Yes, it is probably a phishing attempt.  I'd delete it.
0
Threat Intelligence Starter Resources

Integrating threat intelligence can be challenging, and not all companies are ready. These resources can help you build awareness and prepare for defense.

 
LVL 25

Author Comment

by:nickg5
ID: 37707727
CL wants everyone to have an account.
Each account requires a phone number, so you can not have more than one e-mail address on your one, and only, phone number.
So, they are trying to weed out the e-mail addresses that do not have accounts.

When I saw: craigslist@entrusted.com, I immediately thought it was a member of their staff, wanting me to reply back, so they can block my e-mail address.

They have some rules that are questionable rules.
1. If I have a Canadian coin to sell, they do not allow me to offer it for sale in Canada.
2. If I might like to have a penpal in Russia, I can not place a personals ad in Russia.

They tell me that Craigslist is for locals only.

However, I see many U.S. persons with ads placed in other states, and countries.

I got an e-mail a few weeks ago from a female. I replied back and within a few minutes one of my posts was flagged. I highly suspect that member of the CL staff did that.

Now, CL has only 34 employees. So, they can not monitor, screen, etc. all ads. So thousands of ads slip through the crack, and get posted without those persons having a CL account.
0
 
LVL 4

Assisted Solution

by:kdebugs
kdebugs earned 225 total points
ID: 37707783
entrusted.com is a design firm/church (I can't figure it out).

Another possibility is that one of their users created an account to use for craigslist (I use disposable addresses in my own domain all the time for one-time interactions and I see myself creating and using craigs@mydomain to interact with people on craigslist).

If you're feeling paranoid but curious, create a new acct in gmail or other service, and reply. This way your real email remains isolated from this, should you need that.

Alex
0
 
LVL 25

Author Comment

by:nickg5
ID: 37717263
thanks
0
 
LVL 25

Author Closing Comment

by:nickg5
ID: 37717268
-
0

Featured Post

What Should I Do With This Threat Intelligence?

Are you wondering if you actually need threat intelligence? The answer is yes. We explain the basics for creating useful threat intelligence.

Join & Write a Comment

Suggested Solutions

Title # Comments Views Activity
address book on outlook 2016 mac 7 48
SBS Server and Office 365 5 33
outlook, calendar 3 30
record call on android mobile 16 44
Resolve Outlook connectivity issues after moving mailbox to new Exchange 2016 server
Is your Office 365 signature not working the way you want it to? Are signature updates taking up too much of your time? Let's run through the most common problems that an IT administrator can encounter when dealing with Office 365 email signatures.
Get people started with the process of using Access VBA to control Outlook using automation, Microsoft Access can control other applications. An example is the ability to programmatically talk to Microsoft Outlook. Using automation, an Access applic…
Notifications on Experts Exchange help you keep track of your activity and updates in one place. Watch this video to learn how to use them on the site to quickly access the content that matters to you.

747 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question

Need Help in Real-Time?

Connect with top rated Experts

13 Experts available now in Live!

Get 1:1 Help Now