Quote:
Originally Posted by Casey2296
Deleted post since I'm not sure how those email headers work.
|
SMTP mail grew up as a store-and-forward technology. A message can be handed from one system to another to another prior to reaching its destination. Back in the day the internet was much less reliable and so there needed to be a mechanism for delivering mail when a system was "down". A mail server may have other systems set up as proxies for it to receive mail should it be unavailable to accept it. Nowadays there can be numerous other reasons beyond system outages why one might want to push mail to some other system to be "stored" prior to it being forwarded on its way. Anyway, each system that handles a message signs it by leaving a record in the message's headers. So...
the headers originally posted include the following "interesting" received headers that show the path the message took from sender to mailbox:
Hop #1 - Received: from r145.reply5.ebay.com (r145.reply5.ebay.com [172.82.216.145])
Origin: Received: from [34.217.185.60] ([34.217.185.60:54049] helo=r140.reply5.ebay.com)
The system with address 34.217.185.60 belongs to Amazon's AWS cloud and has been assigned the name ec2-34-217-185-60.us-west-2.compute.amazonaws.com.
So it would seem that either ebay is using AWS and relaying through its own server or is horribly misconfigured and permitting others to use its system as an open email relay. I'll guess that ebay is actually using AWS and that this message really did originate with ebay on that AWS system. fwiw...