September 13, 2021

Is this email header info suspicious?

OK, so I am trying to determine if someone is trying to scam me in a transaction. They are emailing me from a gmail account. I pulled the header information and this bit piqued my interest:

Received-SPF: pass ( domain of [[email protected]](mailto:[email protected]) designates as permitted sender) client-ip=; Authentication-Results:; dkim=pass [email protected] header.s=20210112 header.b=o24vvuCw; spf=pass ( domain of [[email protected]](mailto:[email protected]) designates as permitted sender) smtp.mailfrom=[[email protected]](mailto:[email protected]); dmarc=pass (p=NONE sp=QUARANTINE dis=NONE)

[[email protected]](mailto:[email protected]) (this, by the way is not the actual value, I changed it to avoid revealing anyone’s email address) is completely different from the sender’s supposed email address ) let’s call it [[email protected]](mailto:[email protected]).

So, is j[[email protected]](mailto:[email protected]) pretending to be [[email protected]](mailto:[email protected])?

Leave a Reply

Your email address will not be published. Required fields are marked *

Note: By filling this form and submitting your commen, you acknowledge, agree and comply with our terms of service. In addition you acknowledge that you are willingly sharing your email address with AiOWikis and you might receive notification emails from AiOWikis for comment notifications. AiOWiksi guarantees that your email address WILL NOT be used for advertisement or email marketting purposes.

This site uses Akismet to reduce spam. Learn how your comment data is processed.