I have a hardy server running postfix. It doesnt accept smtp connections from outside my network and collects mail from my isp via fetchmail. I have had a few emails which look like they come from my server
my server's hostname is dumbledore.hogwarts.local
Received: from dumbledore.hogwarts.local (localhost [127.0.0.1])
by dumbledore.hogwarts.local (Postfix) with ESMTP id 89D2DCB62C5
for <kriszani@localhost>; Mon, 3 Nov 2008 22:06:48 +0000 (GMT)
Delivery-date: Mon, 03 Nov 2008 22:06:01 +0000
Received: from tintern2.dsvr.co.uk [22.214.171.124]
by dumbledore.hogwarts.local with POP3 (fetchmail-6.3.8)
for <kriszani@localhost> (single-drop); Mon, 03 Nov 2008 22:06:48 +0000 (GMT)
Received: from [126.96.36.199] (helo=home-dbd219661e)
by tintern2.dsvr.co.uk with esmtp (Exim 4.62)
id 1Kx7YH-0005Xz-Uo; Mon, 03 Nov 2008 22:06:01 +0000
Received: from [188.8.131.52] by inbound.homesteadmail.com; Mon, 3 Nov 2008 14:05:36 -0800
From: PayPal@dumbledore.hogwarts.local, firstname.lastname@example.org
Subject: Getting Started with your PayPal Anti-Fraud Protection
Date: Mon, 3 Nov 2008 14:05:36 -0800
X-Mailer: Microsoft Outlook Express 6.00.2900.2180
X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2900.2180
This is a multi-part message in MIME format.
so my question is, does the guy sending this know what my server name is already. or is it likely that postfix or fetchmail sees a malformed address e.g. Paypal and sticks the domain name on the end.
all comments appreciated.