[Last Call] Learn how to a build a cloud-first strategyRegister Now

x
?
Solved

What can you tell me about the information on this e-mail header?

Posted on 2012-03-11
7
Medium Priority
?
593 Views
Last Modified: 2012-03-13
[208.104.161.76] (helo=[192.168.15.3])
      by bed.mysitehosted.com with esmtpa (Exim 4.69)
      (envelope-from <craigslist@entrusted.com>)
      id 1S6kUl-004DGy-Qa

I got a reply to one of my ads on Craigslist.
I've never seen one, that had a header like above.
Normally, well, in all "previous" cases, the person replying to my ad had a user name and a recognizable e-mail address.

The one above looks fishy to me.

What is "craigslist@entrusted.com"

I am reluctant to say, that this message came from an individual interested in my item.

Anyone have any ideas or knowledge on how to look at that header and come away with facts?
0
Comment
Question by:nickg5
  • 4
  • 2
7 Comments
 
LVL 84

Accepted Solution

by:
Dave Baldwin earned 1100 total points
ID: 37707427
(envelope-from <craigslist@entrusted.com>) means that's where the message actually originated from.  If the 'From:' says it was from 'craigslist.org', you know it's being faked.
0
 
LVL 25

Author Comment

by:nickg5
ID: 37707478
I think is came from someone who works for Craigslist.

Do you come to the same conclusion?

I've got phishing messages from them before.

Does that header indicate my suspicions may be correct?
0
 
LVL 84

Expert Comment

by:Dave Baldwin
ID: 37707607
No, I don't think it came from craigslist at all.  Yes, it is probably a phishing attempt.  I'd delete it.
0
Windows Server 2016: All you need to know

Learn about Hyper-V features that increase functionality and usability of Microsoft Windows Server 2016. Also, throughout this eBook, you’ll find some basic PowerShell examples that will help you leverage the scripts in your environments!

 
LVL 25

Author Comment

by:nickg5
ID: 37707727
CL wants everyone to have an account.
Each account requires a phone number, so you can not have more than one e-mail address on your one, and only, phone number.
So, they are trying to weed out the e-mail addresses that do not have accounts.

When I saw: craigslist@entrusted.com, I immediately thought it was a member of their staff, wanting me to reply back, so they can block my e-mail address.

They have some rules that are questionable rules.
1. If I have a Canadian coin to sell, they do not allow me to offer it for sale in Canada.
2. If I might like to have a penpal in Russia, I can not place a personals ad in Russia.

They tell me that Craigslist is for locals only.

However, I see many U.S. persons with ads placed in other states, and countries.

I got an e-mail a few weeks ago from a female. I replied back and within a few minutes one of my posts was flagged. I highly suspect that member of the CL staff did that.

Now, CL has only 34 employees. So, they can not monitor, screen, etc. all ads. So thousands of ads slip through the crack, and get posted without those persons having a CL account.
0
 
LVL 4

Assisted Solution

by:kdebugs
kdebugs earned 900 total points
ID: 37707783
entrusted.com is a design firm/church (I can't figure it out).

Another possibility is that one of their users created an account to use for craigslist (I use disposable addresses in my own domain all the time for one-time interactions and I see myself creating and using craigs@mydomain to interact with people on craigslist).

If you're feeling paranoid but curious, create a new acct in gmail or other service, and reply. This way your real email remains isolated from this, should you need that.

Alex
0
 
LVL 25

Author Comment

by:nickg5
ID: 37717263
thanks
0
 
LVL 25

Author Closing Comment

by:nickg5
ID: 37717268
-
0

Featured Post

Technology Partners: We Want Your Opinion!

We value your feedback.

Take our survey and automatically be enter to win anyone of the following:
Yeti Cooler, Amazon eGift Card, and Movie eGift Card!

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will help to fix the below error for MS Exchange server 2010 I. Out Of office not working II. Certificate error "name on the security certificate is invalid or does not match the name of the site" III. Make Internal URLs and External…
Mailbox Corruption is a nightmare every Exchange DBA wishes he never has. Recovering from it can be super-hectic if not entirely futile. And though techniques like the New-MailboxRepairRequest cmdlet have been designed to help with fixing minor corr…
Where to go on the main page to find the job listings. How to apply to a job that you are interested in from the list that is featured on our Careers page.
There are cases when e.g. an IT administrator wants to have full access and view into selected mailboxes on Exchange server, directly from his own email account in Outlook or Outlook Web Access. This proves useful when for example administrator want…
Suggested Courses

829 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question