?
Solved

What can you tell me about the information on this e-mail header?

Posted on 2012-03-11
7
Medium Priority
?
577 Views
Last Modified: 2012-03-13
[208.104.161.76] (helo=[192.168.15.3])
      by bed.mysitehosted.com with esmtpa (Exim 4.69)
      (envelope-from <craigslist@entrusted.com>)
      id 1S6kUl-004DGy-Qa

I got a reply to one of my ads on Craigslist.
I've never seen one, that had a header like above.
Normally, well, in all "previous" cases, the person replying to my ad had a user name and a recognizable e-mail address.

The one above looks fishy to me.

What is "craigslist@entrusted.com"

I am reluctant to say, that this message came from an individual interested in my item.

Anyone have any ideas or knowledge on how to look at that header and come away with facts?
0
Comment
Question by:nickg5
[X]
Welcome to Experts Exchange

Add your voice to the tech community where 5M+ people just like you are talking about what matters.

  • Help others & share knowledge
  • Earn cash & points
  • Learn & ask questions
  • 4
  • 2
7 Comments
 
LVL 84

Accepted Solution

by:
Dave Baldwin earned 1100 total points
ID: 37707427
(envelope-from <craigslist@entrusted.com>) means that's where the message actually originated from.  If the 'From:' says it was from 'craigslist.org', you know it's being faked.
0
 
LVL 25

Author Comment

by:nickg5
ID: 37707478
I think is came from someone who works for Craigslist.

Do you come to the same conclusion?

I've got phishing messages from them before.

Does that header indicate my suspicions may be correct?
0
 
LVL 84

Expert Comment

by:Dave Baldwin
ID: 37707607
No, I don't think it came from craigslist at all.  Yes, it is probably a phishing attempt.  I'd delete it.
0
Get your Disaster Recovery as a Service basics

Disaster Recovery as a Service is one go-to solution that revolutionizes DR planning. Implementing DRaaS could be an efficient process, easily accessible to non-DR experts. Learn about monitoring, testing, executing failovers and failbacks to ensure a "healthy" DR environment.

 
LVL 25

Author Comment

by:nickg5
ID: 37707727
CL wants everyone to have an account.
Each account requires a phone number, so you can not have more than one e-mail address on your one, and only, phone number.
So, they are trying to weed out the e-mail addresses that do not have accounts.

When I saw: craigslist@entrusted.com, I immediately thought it was a member of their staff, wanting me to reply back, so they can block my e-mail address.

They have some rules that are questionable rules.
1. If I have a Canadian coin to sell, they do not allow me to offer it for sale in Canada.
2. If I might like to have a penpal in Russia, I can not place a personals ad in Russia.

They tell me that Craigslist is for locals only.

However, I see many U.S. persons with ads placed in other states, and countries.

I got an e-mail a few weeks ago from a female. I replied back and within a few minutes one of my posts was flagged. I highly suspect that member of the CL staff did that.

Now, CL has only 34 employees. So, they can not monitor, screen, etc. all ads. So thousands of ads slip through the crack, and get posted without those persons having a CL account.
0
 
LVL 4

Assisted Solution

by:kdebugs
kdebugs earned 900 total points
ID: 37707783
entrusted.com is a design firm/church (I can't figure it out).

Another possibility is that one of their users created an account to use for craigslist (I use disposable addresses in my own domain all the time for one-time interactions and I see myself creating and using craigs@mydomain to interact with people on craigslist).

If you're feeling paranoid but curious, create a new acct in gmail or other service, and reply. This way your real email remains isolated from this, should you need that.

Alex
0
 
LVL 25

Author Comment

by:nickg5
ID: 37717263
thanks
0
 
LVL 25

Author Closing Comment

by:nickg5
ID: 37717268
-
0

Featured Post

What does it mean to be "Always On"?

Is your cloud always on? With an Always On cloud you won't have to worry about downtime for maintenance or software application code updates, ensuring that your bottom line isn't affected.

Question has a verified solution.

If you are experiencing a similar issue, please ask a related question

This article will help to fix the below errors for MS Exchange Server 2013 I. Certificate error "name on the security certificate is invalid or does not match the name of the site" II. Out of Office not working III. Make Internal URLs and Externa…
In this article I discuss my selections of the Top Four free Outlook OST File Viewers available. Open, view and read even damaged OST files by using these tools. They all provide a clear preview of all data such as emails, notes, tasks, calendars, e…
Get people started with the process of using Access VBA to control Outlook using automation, Microsoft Access can control other applications. An example is the ability to programmatically talk to Microsoft Outlook. Using automation, an Access applic…
CodeTwo Sync for iCloud (http://www.codetwo.com/sync-for-icloud?sts=6554) automatically synchronizes your Outlook 2016, 2013, 2010 or 2007 folders with iCloud folders available via iCloud Control Panel. This lets you automatically sync them with…
Suggested Courses

765 members asked questions and received personalized solutions in the past 7 days.

Join the community of 500,000 technology professionals and ask your questions.

Join & Ask a Question