Thursday, December 06, 2007

ada orang tanyer...

aku kena mengajar satu jabatan kerajaan.... so ada lah trainee yang bertanyer... macam mana nak detect email kalu orang hantar kat kita... then aku jawab.. ada 2 level satu melibatkan ISP kalu yang menghantar tu tahap dewa2... tapi kalu tahap prebet2 no hal...

setiap email yang dihantar mesti ada source dia... so kalu kita guna Gmail.. klik pada show original

anda akan dapat sebegini..

Delivered-To: [email protected]
Received: by 10.64.203.16 with SMTP id a16cs105272qbg;
Fri, 7 Dec 2007 19:27:13 -0800 (PST)
Received: by 10.141.98.13 with SMTP id a13mr736231rvm.1197084433020;
Fri, 07 Dec 2007 19:27:13 -0800 (PST)
Return-Path: <
[email protected]>
Received: from
mail1.proeight.com.my ([218.111.142.66])
by mx.google.com with ESMTP id c19si867433rvf.2007.12.07.19.27.11;
Fri, 07 Dec 2007 19:27:13 -0800 (PST)
Received-SPF: neutral (google.com: 218.111.142.66 is neither permitted nor
denied by best guess record for domain of [email protected])
client-ip=218.111.142.66;
Authentication-Results: mx.google.com;
spf=neutral (google.com: 218.111.142.66 is
neither permitted nor denied by best guess record for domain of
[email protected]) [email protected]
Received: from localhost (localhost.localdomain [127.0.0.1])
by mail1.proeight.com.my (Postfix) with ESMTP id 7A1083FF2E5
for ; Sat, 8 Dec 2007 11:29:20 +0800 (MYT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: 4.225
X-Spam-Level: ****
X-Spam-Status: No, score=4.225 tagged_above=-10 required=6.6
tests=[BAYES_60=1, HTML_MESSAGE=0.001, RCVD_IN_PBL=0.905,
RDNS_NONE=0.1, TVD_SPACE_RATIO=2.219]
Received: from mail1.proeight.com.my ([127.0.0.1])
by localhost (mail1.proeight.com.my [127.0.0.1])
(amavisd-new, port 10024)
with ESMTP id 8tornIjv76Vx for ;
Sat, 8 Dec 2007 11:29:13 +0800 (MYT)
Received: from selasih7df1158 (unknown [60.53.2.16])
by mail1.proeight.com.my (Postfix) with ESMTP id BBD003FF2E1
for ; Sat, 8 Dec 2007 11:29:13 +0800 (MYT)
Message-ID: <[email protected]>
From: "Ewan"
To:
Subject: test
Date: Sat, 8 Dec 2007 11:18:17 +0800
MIME-Version: 1.0
Content-Type: multipart/alternative;
boundary="----=_NextPart_000_0004_01C8398C.081D4600"
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 6.00.2900.3138
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.3198

This is a multi-part message in MIME format.

------=_NextPart_000_0004_01C8398C.081D4600
Content-Type: text/plain;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable

test
------=_NextPart_000_0004_01C8398C.081D4600
Content-Type: text/html;
charset="iso-8859-1"
Content-Transfer-Encoding: quoted-printable


disini sudah dikenal pasti.. sapa yang hantar... iaitu mamat ewan..
dari mail server company tu... siap ada IP... so nampak sangat itu datang dari Malaysia..
so kita pun check lah.. pi laman web tu... proeight.com.my
tanyer ada tak nama ewan dalam sana... kalu ada ... nampak sangat lah mamat ni
prebet x boleh pakai.. ada pulak hantar email layang dari mail server company.. kan dah kantoi

ok budak2.. sekian untuk intro bagaimana nak mengesan email layang... kita sambung balik silibus yang sepatutnya.. muahahahaha

1 comment:

Anonymous said...

berkenaan dgn emel layang, kalau org tu sent lepas tu delete akaun macamane ye. boleh trace lagi ke