Odd client email problem
I have a client who has recieved a form off his site but somehow an email address from the server got added to it. Here the headers (real names hidden)
Any ideas How did the email addresses in red get there? They are not on the form or script he is using. One is "fr" after a legit address, and then "fr@servername.com" Why would an email address using the server's hostname get added to the reply-to line?
I'm a bit weak with email issues, but the rest of the headers look okay to me. Tell me if you see differently, please!
Return-path: <nobody@l1.servername.com>
Received: from punt-3.mail.demon.net by mailstore
for user@jclientname.uk id 1ANaKG-0000hu-K6;
Sat, 22 Nov 2003 16:09:36 +0000
Received: from [64.191.xxx.xxx] (helo=servername.com)
by punt-3.mail.demon.net with esmtp id 1ANaKG-0000hu-K6
for username@clientname; Sat, 22 Nov 2003 16:09:36 +0000
Received: from nobody by servername with local (Exim 4.24)
id 1ANaKG-0006Ek-36
for user@clientname.com; Sat, 22 Nov 2003 11:09:36 -0500
To: user@clientname.com
Subject: Form from client site.
From: Form submission<legit@mailaddress.com,fr >
Reply-To: legit@mailaddress.com,fr@servername.com
Message-Id: <E1ANaKG-0006Ek-36@servername.com>
Date: Sat, 22 Nov 2003 11:09:36 -0500
X-AntiAbuse: This header was added to track abuse, please include it with any abuse report
X-AntiAbuse: Primary Hostname - servername.com
X-AntiAbuse: Original Domain - clientdomain
X-AntiAbuse: Originator/Caller UID/GID - [99 99] / [47 12]
X-AntiAbuse: Sender Address Domain - servername
Thanks.
