richardm
2006-08-01, 01:43
In other words, does a spam msg from a zombie PC include the address of the infected PC itself, or is everything in the msg header forged by the spam/botnet program? Anyone know?
richardm
In other words, does a spam msg from a zombie PC include the address of the infected PC itself,
Hello.
Spam email headers contain a spoof somewhere in the path to keep the victim (or authorities) from backtracking.
The actual source of the message can also be 'hidden' via several redirection or relay techniques, especially in a bot net which is a spammers usual method. You basically can't believe anything you see in a spam email header.
ISP or network admins closest to the hacked box could see the traffic, however the 'spoof point' can be several hops removed from the source.
Unfortunately spam is a fact of life, all you can do is try to filter it out.
The important thing is to keep your own system clean and protected so you do not become a spam zombie yourself.
Regards.