apps:headers
Table of Contents
mail headers
context
dit document beschrijft de info die je in mail headers kunt vinden
mail header
- trace van volledig pad dan een email heeft gevolgd: (mailserver) verzender, (mailserver) ontvanger, authenticatie, …
- vaak gebruikt om SPAM score van een mail na te kijken
- evengoed: kan je nakijken hoe je eigen mailserver erin voorkomt.
- lees mail headers van onder naar boven
- afhankelijk van de mail/web client die je gebruikt, vind je ergens wel de optie:
View headersom de headers na te kijken.
interessante velden
Return-Path:mailadres waarnaar een boucned mail moet verstuurd wordenMessage-Id:unieke id van het bericht.Original-From: oorspronkelijke verzender van de mailReceived: from: mailserver die bericht afleverde (bij mailserver van bestemmeling)- veldjes met een X zijn onderweg toegevoegd door 1 van de servers waarlangs de mail passserde:
X-Google-Smtp-Source: ACHHUZ5x2LfnBwYPmuhrb6F+A+b1DCq2nFgRx//79HrUL+xpQf+jsHaF5N9QVTzklvBjEN56mhc2Jg== X-Received: by 2002:a17:906:3446:b0:97e:aace:b6bc with SMTP id d6-20020a170906344600b0097eaaceb6bcmr278108ejb.53.1688068701564; Thu, 29 Jun 2023 12:58:21 -0700 (PDT) From: itopvolging@gmail.com X-Google-Original-From: legoland@checkmk.legoland.net
voorbeeld
Mail (Message-Id: <1688068701.030393.1851316.nullmailer@boerke>)wordt verstuurd:
- From: itopvolging@gmail.com
- Op: Date: Thu, 29 Jun 2023 21:58:21 +0200
- Subject: Check_MK: ad2/Log Directory Service WARN → OK
- To: koen.veys@protonmail.com
- X-Google-Original-From: legoland@checkmk.legoland.net
- Received: from boerke ([212.233.44.200]) by smtp.gmail.com with ESMTPSA id
zie ook: nullmailer
Return-Path: <itopvolging@gmail.com>
X-Original-To: koen.veys@protonmail.com
Delivered-To: koen.veys@protonmail.com
Authentication-Results: mailin036.protonmail.ch; dkim=pass (Good 2048
bit rsa-sha256 signature) header.d=gmail.com header.a=rsa-sha256
Authentication-Results: mailin036.protonmail.ch; dmarc=pass (p=none dis=none)
header.from=gmail.com
Authentication-Results: mailin036.protonmail.ch; spf=pass smtp.mailfrom=gmail.com
Authentication-Results: mailin036.protonmail.ch; arc=none smtp.remote-ip=209.85.218.45
Authentication-Results: mailin036.protonmail.ch; dkim=pass (2048-bit key)
header.d=gmail.com header.i=@gmail.com header.b="mgOcfMdt"
Received: from mail-ej1-f45.google.com (mail-ej1-f45.google.com [209.85.218.45]) (using
TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No
client certificate requested) by mailin036.protonmail.ch (Postfix) with ESMTPS id
4QsTld6XBjz9vNQQ for <koen.veys@protonmail.com>; Thu, 29 Jun 2023 19:58:21 +0000 (UTC)
Received: by mail-ej1-f45.google.com with SMTP id a640c23a62f3a-9928abc11deso131055466b.1
for <koen.veys@protonmail.com>; Thu, 29 Jun 2023 12:58:21 -0700 (PDT)
Received: from boerke ([212.233.44.200])
by smtp.gmail.com with ESMTPSA id
e21-20020a170906c01500b009929ab17bdfsm1651346ejz.168.2023.06.29.12.58.21
for <koen.veys@protonmail.com>
(version=TLS1_3 cipher=TLS_AES_256_GCM_SHA384 bits=256/256);
Thu, 29 Jun 2023 12:58:21 -0700 (PDT)
Received: (nullmailer pid 1851317 invoked by uid 998); Thu, 29 Jun 2023 19:58:21 -0000
Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=gmail.com; s=20221208; t=1688068701; x=1690660701;
h=message-id:auto-submitted:to:subject:date:mime-version:from:from:to
:cc:subject:date:message-id:reply-to;
bh=qz2jbvic5wIxBpncxxLYYmifhInZtVHWHEyEw5DHqj8=;
b=mgOcfMdtsjNBEGhu4WIUE/i8V7SrDmCuUyJmj2r2p55CXNl3tgq9lfsE/iu7oOXwjO
RMp/BvOf3YjBc1H9tIl52ci6uowVqdrCzF4ZfdF2ZKJQCnTMth/Yjz5PiQIBRzhtEeyE
S96NiAjNDge42/ieA80P9shzahYZBj5M7YbEJSzBKgRtwedB9PcBycx1eX2p1805kd0j
TXz7I6EWzt3TwKTjBjMUw2Lx+3cP2AhrOs5HWc3r7HoH3ZFKooKu1mjCSMNTr1m+cSso
dItel0Ydpyl5GxTljdixjfSZ144QJQsyKFI6XcJMSUYkGKPbaja0QCMvbxGyzQ/8sfOT
gL+Q==
X-Google-Dkim-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;
d=1e100.net; s=20221208; t=1688068701; x=1690660701;
h=message-id:auto-submitted:to:subject:date:mime-version:from
:x-gm-message-state:from:to:cc:subject:date:message-id:reply-to;
bh=qz2jbvic5wIxBpncxxLYYmifhInZtVHWHEyEw5DHqj8=;
b=Fx668h7Urpfh6N62yEYO18UGFryoGXQlhPgKtxukLsLm8/SBxuLD+NcQVKNVVO0Nsh
AnvBshKodJkboPI7rn2xyFfyif8WvPAk6L/hoHW1x1WGy0LPZADVXIU5ksULZr5lgOAH
JwCzN4a0S8Rj2Wky8gWuXun4pQaHvb4OOiRCJdsUtyBpaIf8dPAeu7l9McsPjAeSBOs6
xGxQwr7TC//7vn4b9PTOFEb5WFbxHiTGBCD8ZVRbCOoELwCpTXcVQMcZ8r5RKmW3EOPm
sgzD1sS0pCZBqX03d1AKO2kk+qJF07siWzXxWjcs+CLOq4qLqYuYOAqOAYXxvcrWJLAu
JB2w==
X-Gm-Message-State: ABy/qLaseltqDTQsSRMSOPSg2nO/j2y+nwHIhsoPS4aY7KcMbDvzAXkO
rU6FvzVHnhGUv4I9mptk/DLanMn5wys=
X-Google-Smtp-Source: ACHHUZ5x2LfnBwYPmuhrb6F+A+b1DCq2nFgRx//79HrUL+xpQf+jsHaF5N9QVTzklvBjEN56mhc2Jg==
X-Received: by 2002:a17:906:3446:b0:97e:aace:b6bc with SMTP id
d6-20020a170906344600b0097eaaceb6bcmr278108ejb.53.1688068701564;
Thu, 29 Jun 2023 12:58:21 -0700 (PDT)
From: itopvolging@gmail.com
X-Google-Original-From: legoland@checkmk.legoland.net
Content-Type: text/html
Mime-Version: 1.0
Date: Thu, 29 Jun 2023 21:58:21 +0200
Subject: Check_MK: ad2/Log Directory Service WARN -> OK
To: koen.veys@protonmail.com
Auto-Submitted: auto-generated
X-Auto-Response-Suppress: DR,RN,NRN,OOF,AutoReply
Message-Id: <1688068701.030393.1851316.nullmailer@boerke>
X-Rspamd-Server: cp5-mailin-036.plabs.ch
X-Spamd-Result: default: False [-2.40 / 25.00]; BAYES_HAM(-3.00)[99.99%];
MIME_BASE64_TEXT_BOGUS(1.00)[]; MID_RHS_NOT_FQDN(0.50)[];
DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; R_SPF_ALLOW(-0.20)[+ip4:209.85.128.0/17:c];
R_DKIM_ALLOW(-0.20)[gmail.com:s=20221208]; MIME_BASE64_TEXT(0.10)[];
MIME_GOOD(-0.10)[multipart/related,multipart/alternative,text/plain];
FROM_EQ_ENVFROM(0.00)[]; NEURAL_HAM(-0.00)[-0.991]; ASN(0.00)[asn:15169,
ipnet:209.85.128.0/17, country:US]; FROM_NO_DN(0.00)[]; RCVD_TLS_LAST(0.00)[];
RCVD_COUNT_THREE(0.00)[3]; MIME_TRACE(0.00)[0:+,1:+,2:+,3:~];
TO_MATCH_ENVRCPT_ALL(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+];
PREVIOUSLY_DELIVERED(0.00)[koen.veys@protonmail.com]; RCPT_COUNT_ONE(0.00)[1];
TO_DN_NONE(0.00)[]; ARC_NA(0.00)[]
X-Rspamd-Queue-Id: 4QsTld6XBjz9vNQQ
X-Pm-Spam: 0yezJI6cihyJeYR3pi42biOpJJvbmsCIeI1msjN3X3blJp7IjBlNIIojwsQjLlITJ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-Pm-Origin: external
X-Pm-Transfer-Encryption: TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits)
X-Pm-Content-Encryption: on-delivery
X-Pm-Spamscore: 0
X-Pm-Spam-Action: inbox
-----BEGIN PGP MESSAGE-----
Version: ProtonMail
wcBMA+EffZbCCMClAQgAkOQnCfpdEhH4a/MapYwe5fbZEQekx+F3552nLDF2
4NnEo5O3H/4Ao7t43R59st1Se6bl30+Tdn6ReuDzQL6+Z5vgg3LB9j+M9VBI
s1URUZMH1+dARFHLLAGvxAyQ6NCamvy3trYVxXVyhD0qe58Xd60vL8HoHL/a
32OTIf5HbnwYYY+GvTNQjfn5RcFbqlJJkOHWVfBy3D7UNJ7AFV4f1AuqDLgZ
gqVtiHS5DHsftJdLwYuJPz9rvro3gouU2jAJWHmpXvKXnzvo57rKRsUgVKlQ
plyih2/eb0gNyoFg0UWeV1ZFnoE5hZv0ROTBagcyGquxkfw7L9l9wVRRe3gm
n9LEAwGbd5lMejFwxdJMnWNpoetu0n4Zj3CmbjmOEm85PI8ePyXfxgolbBRg
6quZDIXqPp7Jq/FFVLk+RYW+NB/0rVJntI2S22mEpyD7JTuS0QVewNXK0XpD
de7BihBhFQZv4LLOwNs+ur9bguObsuio9LILxczW7UlGutisqXCkjsF0DOir
I6HpoOIODWBG7CfUs7y5DphVetBYTagFjJCFt9+hW2LWTF/+knNeRWDlvFiW
2UFMMp+Mnus5Xz/pjiSALcS82rsOBgS4ZjnuAr57zLF+aJBuWq4Rgpuaa+Ak
2xSwi25TvzGy4VIkC7bpmnttg0EdDagFBLDxHKYiUHk2R/8zPlL6ehdxIQw9
wMMKP2opkaEDs6WyHy+5AP8ob9bTgd4OusK9YqFiGOAJ6CsSC8gr/6QkhNN/
rFj/IB3snVG5/+5hc1cVGrbb6Akz6DO/fefxqVbJsyS/1WJWgE+otbC7B3xK
XIP9oBBmk6JlsPdpT3DkcNUOWWk4YePzWW3eEKeMCeiSNoHDKxN+34iieLJA
M/+peQyIMzhfwcbdtMx7wIyhVJiK0q9RkhHx+OniZdnrJK2St0TkM1HTJizZ
vk/tQZ3Bd6pCEZ2JoMYezIpdFXSmIRRmQ/FAjKDrfuPs5KOvBM2G+zvvr1uy
g8gJ2mKACPW7YAkmzpLV3uNbbknhlpHyIUqw88nEp/Mm3J56ULobCn2Fzlb9
tVVzxiDToSBo2GnpY82YkAJzFK44cbxZuc64wYRt4PIr0PB1t60kj+gVUdpv
jG3FUkkgGwZhjRSdnWcPZgcW6txbaDpzTGj8vJ7gheXBx99svE9NzLHzYcvO
SBTRpJU+5ckxDNIIjpC24TWFsJfrw8c5T3OocBEL+FvdQHJy7AGGynGw7jFX
9l5QwrNMgek74KFEWFGuP5FYNENgX4g6BW+C5+8owSFeYKEk/DuIFNAfBCI3
xZIfSLtvuIhB3p3sZ63z/aDKqoe6avQIVVQ6inQdIAHat7ZNqWztjPyxIC7g
DBvbzrxAMFmbCzO1vmXCXfDSvEN/HOCuUH1Eue2h+p0QAFfE5sUrbyRlLtby
N/0gCepJuVV8nwSFcxpKC4IQJgJhKG8F/D3/4emrlGRz3a/TQ8sG5ik4EEit
ROv9URvWredA5tSsd+PTlQ8wcD+PVH0Xq5oYEcBIFEtp2qJcj+ipl/FW9ZAc
KYLlRXP7lsG63FYGaBL4WAHuh0b/P2FRetZmruyqyb9OpMHGFyRGVOjmbR6k
qp11Ryx+PWF/B4Ipj1unk/mNe1Oi2rFFTMge59p5ulk162ZyH+oKiS7duh1e
DM7dKNd/xv0XgKpVyV0uxKqw0rpYEJ5v3el9XfAWbbIHL8rLQiWqlLnaZY6F
N/6HoHshUT5A+/eASKJ50M2zcZnUaDNXp6T6RwkRSWqGy5WPCwIUwZIip1I+
x5zkAF2ZCqzDf1MyWp3hDNAU9hsA2vGNLlGEQZn0edAusTf6d65xcG9dAMFd
h2zp3Ll+emQ5kX0ntW4lWO3TPh7KMoCYjX34uXtEP+6vEguuIEtmqZC4rffX
jmz78zpc+567Vtcw0aDslJvUvqotYsa0HMi5n8y5vd6TZ/zBYb5EHkDVkS4i
f/ctVXYkXk0=
=eaAe
-----END PGP MESSAGE-----
meer info
voeg hier linken toe naar verdere uitleg
apps/headers.txt · Last modified: 2023/06/29 23:02 by admin