Inequality of Laws on Sex and Statutory Rape (in Europe)

Over the last few days I have had interesting discussions with a friends about sex, the legal age of consent and statutory rape (ie. sex with someone considered ‘under age’) the implications, how it applies and how others might be affected by it.  I thought I would pose the questions, both answered and unanswered to you the reader.  If you wish to comment please do, if you do comment, please do not use any names or identifying details of the people concerned.

What follows are some scenarios, some real, some fictitious (and I’m not going to reveal which are which)…  Some refer to situations I have been in, some not, if you know me extremely well you will may possibly guess who and when, but otherwise you’d have to be one of the people concerned to know.  Others I mention are public as they have been in local and national newspapers, sometimes causing public outcry.  In all cases I will not reveal names, and I will delete/unapprove any comments that indicate who is involved (so please don’t do it if you comment, think before you write.)

First though the laws… according to Wikipedia in the UK, the age of consent is 16 (18 if one of the people are persons in a position of power (Person in a position of power are people like: Mum, Dad, Gardian, BabySitter, Doctor, Teacher, Priest, etc)  In Sweden it’s 15, in Malta its 18 etc… Now in most countries the age limit is physical age, not mental age, and that would be because of the difficulties of defining mental age.  In a couple of countries (eg Malta) there is an additional caveat in that a person that who has engaged in multiple consensual sexual relations in the past cannot be considered a minor even if their physical age is lower than that specified in law…. some countries have differing laws for homosexual vs hetrosexual relationships as well, I’m not going to get into that mine field, except to refer to both as if they are the same… that in mind consider the following:

Note: In each of the ‘non public’ examples I will refer to me as one person regardless of whether it was or not as there are at least 2 cases were the ‘other person’ was someone of around my age.  This of course ensures they are ficticious, but give real world issues.  It also means it’s harder to tell which ones have me involved and which ones do not. 😉

First some public cases…

Two Maltese residents/citizens of ‘minor’ age (both 14 or 15 if I remember correctly) the male was prosecuted for rape, the female wasn’t.  On the other hand in Britain, 2 persons (one male, one female) of ‘minor’ age engaged in sex, both were arrested and prosecuted for statutory rape.  Outside of Europe but something directly related, a 20+ female school teacher in Australia was jailed for engaging in sex with a 14 year old student.  Now the discussion on that is “why?” well in the latter (Australian) case it’s simple, a position of power, large age difference etc, laws were applied correctly and justly, but looking at the other two cases.  First the British one… how can two people (both minors themselves) be prosecuted for non consensual sex (statutory rape) with each other?  To ‘Rape’ someone one person is a victim, one is the instigator, how can both be the victims or worse (logically) both be the instigators?  Second, the Maltese case, there have been several such cases, some better argued by lawyers and some not, and that affects the outcome.  Some cases the lawyers have argued that the female has been sexually promiscuous in the past and therefore the law does not apply, this has affected the outcome and resulted in a ‘not guilty’ verdict.  The question here is ‘should it’, and ‘how is it proved’?

Now some non public stuff, both fictitious and real…

The law in Spain has the legal age of consent at 13 (unless deceit is used – which increases it to 16) the legal age for marriage as of November 2000 was set to 13 also.  So consider this, if 2 people from Spain are married and engage in a normal sexual (and marital) relationship and go to the United Kingdom for a holiday where the law states to be married or have sex they have to be over the age of 16… what happens?  Do they both get arrested and prosecuted for Rape, do they become ‘unmarried’ for the duration of their visit?  What happens if instead of a visit they move there to live permanently?  (On that last thought, if one of the couples’ parents moves to the UK permanently, and the son/daughter moves as a child of the parents… can the spouse gain a spouse Visa and move with his/her wife/husband?)

Now something to consider with me…(fictitious or not?  You decide!)

I was recently engaged in conversations with others about a relationship with me and others (none of which I have engaged in I might add).. I am 42 currently and a pre-op transsexual and all my documentation indicates ‘female’…  All ‘prospective’ partners turn out to be under the age of 18, however they professed to being/appeared to be 23+ when the question of a relationship came up.  Had I engaged in a relationship with any of them I could have been in a very serious and very dangerous place.  Being Australian (even with being a Maltese resident) the laws of Australia apply to me, so as per another case a few years back, I could have been arrested, prosecuted and jailed for engaging in a relationship with either of them (regardless of not knowing their real ages…) but forgetting the Australian laws (as this is an European issue) what would happen here in Malta.

The two girls are 17 year old Maltese residents/citizens, the next is 17 year old Swedish girl and on a long (6 month) holiday, another is a 17 year old British girl…  So lets look at them individually with my thoughts..

First being 42 and being more than double their ages, any consideration of ‘age difference’ are mute.

Now.. Maltese girls, 17, sexually active but legally considered a minor (18 for the age of consent.)  It would have been consensual (she chased me for a relationship), but is it legal?  How does one show that its consensual, how does one show ‘prior sexually active’ if it came to the ‘crunch’?  Well with one that would have been easy, a 17 year old mother already, so that definitively shows prior sexual activity, but what about the others, past boyfriend or past girlfriend? (that doesn’t show sexual activity, only that the person had a relationship..)  Next a Swedish girl, legal age of consent is 15, as a non-resident/holiday maker do the same laws apply, as I am resident and she not, does that make a difference?  If I visit her at home in Sweden, it is legal (Swedish law, I’m Australian so that starts other issues.) Similar issues go with the British girl, except the legal age of consent in the UK is 16 unless you’re in a position of power..  So what would happen if she approached me as a student of IT (at school/university/college) and asked for help, would I be in a position of power if I did help (I am not a teacher by profession.)

Now for some other issues that cannot be applied to me…

How about a if a 16 year old Spanish girl and a 16 year old British boy met on holiday here and engaged in sexual intercourse…?  Would either/both be arrested?

The conclusion and my thoughts (or more of a whole load of questions to be answered)…

The laws across Europe are totally inconsistent, and within the Schengen area there are even more issues in that it is conceivable that two people could engage in sexual activity and either or both be totally legal in their actions and then just walking 10 paces it could be illegal for either or both and have jail time as a possible result.  How are the laws applied?  How can they be applied in such cases?  Should age difference count in the legal system?  If a 16 year old in the UK engages in sexual activity with a 15 year old (two people in the same class at school for example) should one be guilty of statutory rape?  (if not how would one apply the law as there is a need for a clear age ‘limit’ and variations will result in more expense and confusion in the legal system.)  It is indicated in the Maltese definition of consent that majority (if not all) prosecution are based on complaint of the parents and often a same sex relationship is objectionable were as a differing sex relationship is not and therefore rarely prosecuted.  Should psychiatric evaluation of both parties be taken into account?  I know many 20+ year olds (both male and female) with an apparent (and in some cases a real) mental age of a 12-14 year old and I also know plenty of under 16’s that have an apparent mental age (and looks) of a 20+ year old. Does/Should country of residence have an influencing factor on prosecution?

If you do decide to comment, please prefix your comment with your profession if you are a lawyer or policeman/policewoman and your country.  As mentioned before please do not provide identify details of any one involved unless the case is public record (ie quote legal precedence or newspaper publications.)

 

United Airlines has to be the worst airline in the world barring: NONE!

No doubt that even if someone viewed this from United Airlines, they’d just laugh and pass it around as a “in joke” on their corporate LAN with the subject: “LOL this idiot thinks we have customer service!”

 United 906Y SFO-ORD-MUC (7/Mar/2012)

 Leg 1, SFO – ORD (Full Fare Premium Economy –  Silver Frequent Flier – A320/12B)

Boarding by designated class (1 through 8): Allocated Class 4.

Boarding of class 1 and 2 went smoothly, call for class three resulted in no passengers boarding.  Class 4 call occurred and it was noted that several people class 4 were already on the plane.

Ticketing despite being pre-allocated 12C my seat was reallocated to someone else just 24 hours before flight time.  On chatting to the person, they indicated they had paid ‘Top Dollar” for said seat and found on the online check-in that the seat allocation was available.  They were given class 2 boarding.

Staff were generally rude and unhelpful.  One exception on the flight, an attendant allocated to First/Business whom I failed to get her name.   All other flight attendants were unhelpful and unconcerned.  Other passengers also noted similar experiences with UA staff on previous flights.

Entertainment system was faulty, selecting Channel 9 for ‘Flight Deck’ resulted in no audio at all.  Every passenger announcement resulted in being reset to Channel 2, and a set volume.  Mid flight all channels were audio to match the screen.

In-flight dining: none.

 

Leg 2, ORD – MUC (7/Mar/2012) ( Full Fare Premium Economy –  Silver Frequent Flier – B777/22A)

Boarding Group 4, however due to late arrival of previous flight, boarding group not used.  Ground staff unable/unwilling to confirm baggage had actually been transferred from previous flight.

Upon boarding noted 6 economy plus seating was unallocated, when asking for a seat transfer was denied (politely) with the response, “they are for attendants during their rest period.”  Child passenger was sitting in my allocated seat, staff assistance was not provided, however parents of said child were both polite and helpful and moved child to the allocated seat.  Assistance through the whole procedure from the staff was unforthcoming.

During flight, for the first 2.5 hours had the call light on, and re-instated it several times however was completely ignored by all staff.  I slept for 2 hours, and upon waking noted that someone had turned off the attendant call light.  At around 5:20 into the flight I re-illuminated attendant call light.  Noted after 5 minutes no response, so depressed the call button twice.  Was greeted by staff member (Jeanette Quinn) with “What is your emergency”.  I indicated I needed a glass of water to take my medications (7 tablets on show where the staff had no idea of the medication type, nor was I queried on the subject.)  A glass of water was forthcoming within a few minutes.

In seat entertainment system: Generally good, and responsive.  Another passenger (Dwayne Hill, Seat 22C) had issues, upon explaining that the screen works better with hard touches (eg finger nails) rather than the soft padded touch of the index finger his experience was significantly improved.

Passenger Dwayne Hill, Seat 22C also noted that upon wandering back to the galley for a glass of water, was told by flight attendant (unknown – dark skinned) that he should be sleeping, and to return to his seat.  Passenger noted that the communication from the staff was extremely rude.

Upon speaking with other passengers their general experience and choice is “If we could have booked with someone other than United, we would have, they have to be the worst airline they have ever travelled.”  Passengers had various issues with obtaining alcoholic beverages.

In-flight dining:

Food for ‘dinner’ course was well presented, however the quality, whilst much improved from previous flights was still lacking on taste. Choice: Meatballs on pasta.  Salad that accompanied was fresh and of good quality.

Food for ‘breakfast’ course was presented in a bag.  The ‘pastry’ was more akin to a piece of cardboard.  The yogurt was acceptable.

Ticketing/Check-in Issues:

Due to the first leg being a domestic flight, I was forced to use the domestic check-in, however the boarding passes couldn’t be issued without help from the attendant so as there was only one person manning the counters and they were inadequately trained I had a 30 minute check-in.  My luggage allowance was restricted to ‘domestic allowances’ without ‘excess baggage’ charges (this cost an additional $70.00) as the first leg was classed as domestic.  Finally was forced to collect my luggage in Munich and re-check it in for the third leg to Malta as the operative couldn’t work out how to check the baggage all the way to Malta.  They finished by telling me that they couldn’t do it because they had no agreement with the baggage handlers in Munich to do the transfer… even though Air Malta (who would have the same agreement as I flew the reverse direction on my outward flight with the same airlines and same tickets) managed to check my luggage all the way to San Francisco…

General Comments:

Cabin temperature was reasonable, window seat had air conditioning ‘draft’ which the blanket supplied could not protect against.  Using a spare blanket did result in draft exclusion in the window seat (Why I ended up in the window seat even though booking was for the aisle seat.)

Pillows are (as reported previously) completely inadequate.

Toilets initially clean, however towards the end of each flight were soiled which was accompanied by the usual smell.  Flight staff “do not clean or check the toilets” – this was evident in the fact that 2 of the 3 toilets available for use had wet floors, full disposal receptacles and various pieces of rubbish strewn across the floor.

Staff in all ground positions and in leg 2 continually referred to myself as “he” and “him” despite flights being booked as “Ms Michelle Sullivan” and presenting all documentation as “Female”.

 

…. After my last flight with them in 2000 being ‘business class’ ($7000 one way from SFO to MEL) and similar experiences I thought they might get better…  I have just seen that some things in life NEVER change …

A few questions answered…

Ok some questions and answers that keep popping up in the blog…

Question: Can Internet Dongles be traced?
Answer: Yes, very easily if you have the equipment and know how. However there are some caveats. If you have an ex with a dongle that you want to trace, no you can’t. However, if the ex has stolen your dongle (or you’re one of the idiots that think they can steal a dongle and get away with it) .. Yes you can. There are 2 serial numbers embedded in the dongle (known as EMSIs) one is programmable, the other is ‘hard coded’ (ie it cannot be changed) If you know the programmable one and not the hardware code, you have to hope the thief has not had it reprogrammed. On the other hand if you have the hard coded one you can trace it. I won’t discuss the details here (or in private questions) as you have to sign paperwork to get that information in most countries, but the one thing I can tell you is, knowing both makes things a hundred times easier.

Question: Can you trace someone using a particular Internet dongle?
Answer: Yes

Question: Can you trace someone via your blog?
Answer: Yes if they keep connecting to it… Depending on your knowledge and control it might take some coding. However, if the person is stupid or careless, they will leave finger prints all over your blog… for example, someone who spends a lot of time in Florida (USA) is going to get a nasty surprise this year of 2012 if they don’t stop “checking up” as they are going to find themselves in court this year on similar charges of gender discrimination as my ex is. (Final warning: you know who you are, I might not be able to take you to court, but the European court will take the matter up themselves and I will just supply the evidence!)

Question: Can you see what people are searching for when they find your blog?
Answer: It’s simple, just check the ‘referrer’ header it will present the last page visited for example:

98.203.109.165 TwDoP0W3HEMAAAOTCbcAAAAB – – [01/Jan/2012:18:11:59 -0500] “GET / HTTP/1.1” 200 75800 “http://www.bing.com/search?q=michelle+sullivan+malta+blog&form=MSNH14&qs=n&sk=&sc=1-28&x=107&y=13” “Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)”

The ‘q=michelle+sullivan+malta+blog’ shows the person searched for “michelle sullivan malta blog” whilst using ‘Bing’ as the search engine as a matter of interest from Hollywood, Florida, using Windows 7 x64. (Similar things can be seen with Google, and image searches just the line format changes – Webalizer will decode most of them for you if you have trouble working it out.)

Question: If people have linked to your page, can you see where the original link was?
Answer: Yes, and the same thing works for spotting when someone uses some image on your site on their page, or even Facebook links. Again the ‘referrer’ header is the key field, for example a link from Facebook:

46.11.109.216 TwBOhEW3HEAAAArMSsQAAAAB – – [01/Jan/2012:07:16:04 -0500] “GET / HTTP/1.1” 200 75800 “http://www.facebook.com/l.php?u=http%3A%2F%2Fwww.michellesullivan.org%2F&h=2AQElPj30AQHe6mHhKUmRDmzJE9YdYqc8FksLg6ql4Zxynw” “Mozilla/5.0 (Windows NT 5.1) AppleWebKit/535.7 (KHTML, like Gecko) Chrome/16.0.912.63 Safari/535.7”

and an image used elsewhere linking back to the site (in this case my MySpace page):

70.127.86.50 TwEF00W3HEMAAAOTCt0AAAAB – – [01/Jan/2012:20:18:11 -0500] “GET /GalleryData/2009/July/12/thumbnails/DSC_4258.jpg HTTP/1.1” 200 4431 “http://www.myspace.com/michelle_i_sullivan” “Mozilla/5.0 (compatible; MSIE 9.0; Windows NT 6.1; WOW64; Trident/5.0)”

 

Question: I see you have had trouble with a stalker, I think I have a stalker as well, can I use the information to prosecute?
Answer: Yes, but you will need help, if you needed to ask this question you are not someone like myself that has given ‘expert evidence’ in court on multiple occasions so therefore you will need someone to help you gather the evidence. Important: Get advice from the local authorities on the matter as soon as possible if you need to, or think you might, go to court. The first thing you will need to do is turn on forensic logging, this is not as simple as using Apache’s “log_forensic” function, but it is a start. You will also need to dump packet headers from the offenders at a network level and record those packets in a format that is considered ‘untamperable’ (ie once recorded it cannot be altered.) You will also need to be able to follow basic tracing (as described in other articles) as you probably don’t want to record everything that hits your website. Lastly you will need to obtain, or have someone obtain court orders on your behalf, to gain access to the remote connections providers access logs so that you can tie the evidence collected to the offender. Be prepared, such issues are long and involved, and in countries such as Malta, unless you know who to call you rarely get to speak to anyone that actually knows what you’re talking about. You should also note that unless there is a serious crime committed (such as “Criminal Libel”, “Racial Discrimination”, “Gender Discrimination” or “Child Pornography”) you will not get any help from most police forces of the world.

Question: Will you help me trace my stalker?
Answer: I just did by posting this, however if you want someone to be your detective, sorry I don’t do that for others, as I don’t really have the time to waste on it myself, get your self in touch with the Police and if they can’t/won’t help, hire a private investigator to help. Tip: I have used a private investigator myself over the last year to help me as they double checked my ‘evidence’ for forensic ‘soundness’ and at times I just didn’t have the time to do all the work myself. Tracing people is not simple or quick when it comes to getting all the evidence needed for a court case. It’s quick and simple if you just want to ‘know’ without having to ‘prove’ it (also in some cases like mine when the tracing goes international, you either have to visit or get help from someone local – particularly when tracing devices such as dongles to a 50m radius.)

Question: My stalker is using proxies (including the “I’m hiding behind 7 proxies” bulls**t) can they be traced or can I stop them?
Answer: Not as simple as a yes or not because it depends on each proxy and the intent of the person who set each up. Most proxies are accidentally setup ‘open’ and therefore there is no malicious intent, if this is the case it doesn’t matter if there are 100 proxies between the stalker and you, it’s simply a matter of looking for the ‘X-Sent-Via:’ and/or ‘X-Forwarded-For:’ headers in your forensic logs (the latter header is pretty much standardised) if found you will find that all of the IP addresses (including the originators) are presented to you in a nice simple comma separated list.

 

Tracing emails and people via them…

So this is a follow up (as promised) to my previous article on tracing people.  This one takes the different and more requested view of tracing emails and reading headers.

First we will take an example email from one of my inboxes…

Return-path: <katie@sorbs.net>
Received: from [192.168.1.100] (c121-71.i07-31.onvol.net [92.251.121.71])
	by nemesis.sorbs.net
	(iPlanet Messaging Server 5.2 HotFix 2.05 (built Mar  3 2005))
	with ESMTPSA id <0LH100J02CFQR7@nemesis.sorbs.net> for matthew@sorbs.net; Wed,
	23 Feb 2011 06:19:07 +1000 (EST)
Date: Tue, 22 Feb 2011 21:20:05 +0100
From: Katie Crothers <katie@sorbs.net>
To: matthew@sorbs.net
Message-id: <4D641A75.30405@sorbs.net>
MIME-version: 1.0
Content-type: text/plain; format=flowed; charset=ISO-8859-1
Content-transfer-encoding: 7bit
User-Agent: Mozilla/5.0 (Windows; U; Windows NT 6.1; en-GB; rv:1.9.2.13)
	Gecko/20101207 Thunderbird/3.1.7
Original-recipient: rfc822;matthew@sorbs.net

Loved your blog, Matthew.

I wouldn't expect anything less from someone with Multiple Personality
Disorder.

Cheers for the laugh.

So as we can see a fairly abusive email (the sender knows I am no longer called ‘Matthew’, and knew that at the time of sending the email, they also knew that the address is one I keep for legacy only and rarely read it), one that needs tracing to the source. This one is fairly simple as unlike spam it doesn’t contain fake headers… Ok first a few things starting with the most important rule..

  1. You can only trust the headers generated by your server (your means your ISPs server or one you own.)
  2. Received headers in all modern servers are read from the top down (ie latest goes at the top)

So the headers:

Received: from [192.168.1.100] (c121-71.i07-31.onvol.net [92.251.121.71])
	by nemesis.sorbs.net
	(iPlanet Messaging Server 5.2 HotFix 2.05 (built Mar  3 2005))
	with ESMTPSA id <0LH100J02CFQR7@nemesis.sorbs.net> for matthew@sorbs.net; Wed,
	23 Feb 2011 06:19:07 +1000 (EST)

So in this case we have one header, so for this example, it’s simple.. it was sent directly to my server either by a registered user, or by some trying to send unauthorised emails. In this case I know that Katie Crothers was a registered user (as I am the server administrator) but lets analyse the line a bit more and see what we can gleen in information.

The first part of the line [192.168.1.100] is the command used by the client when connecting to the server and issuing the identifying command HELO in this case it is the correctly formatted IP address of the local host on the local network.  The second part (c121-71.i07-31.onvol.net [92.251.121.71]) is the server checked and logged connection. The IP address 92.251.121.71 is the host that actually connected to the server (in this case a home network/DSL/Cable router) the name c121-71.i07-31.onvol.net is the verified hostname of the connection (as provided by the ISP). Using geo-location services we know the host is a connected Melita Cable modem not far from the Naxxar Police station in Naxxar, Malta.

The second part of the line: by nemesis.sorbs.net (iPlanet Messaging Server 5.2 HotFix 2.05 (built Mar 3 2005)) just identifies the local mail server type and version and is more for debugging purposes than anything.

The third part of the line: ESMTPSA id <0LH100J02CFQR7@nemesis.sorbs.net&gt tells us the connection identifying command was EHLO rather than HELO this is not really useful for our purposes, however <0LH100J02CFQR7@nemesis.sorbs.net&gt is the message ID in the server which is a lot more useful in that it will make finding the log line in the logfiles a lot easier to find.

The forth part of the line: for matthew@sorbs.net tells us the destination email address as the server saw it. This cannot be faked, unlike the one in the To: line further in the headers as it tells the server how and where to deliver the email, where the To: line is for informational purposes with reference to the email reader only.

The rest of the headers are irrelevant for the purposes of this article and should be self explanatory with the exception of the line Original-recipient: rfc822;matthew@sorbs.net which is a copy of the destination email address used to tell the server how to route the email.

Ok on to something a little more realistic for tracing spam:

Return-path: <alison@isux.com>
Received: from catapilla.sorbs.net (catapilla.sorbs.net [113.52.8.151])
	by nemesis.sorbs.net (iPlanet Messaging Server 5.2 HotFix 2.05 (built Mar  3 2005))
	with ESMTP id <0LHA00840VAD00@nemesis.sorbs.net> for michelle@shellsshots.com;
	Mon, 28 Feb 2011 09:44:37 +1000 (EST)
Received: from vampire.isux.com (c190-211.i02-8.onvol.net [213.165.190.211])
	by catapilla.sorbs.net (Postfix) with ESMTP id 5F8B42E0D5 for
	<michelle@shellsshots.com>; Mon, 28 Feb 2011 10:44:35 +1100 (EST)
Received: by vampire.isux.com (Postfix) id E7FF3C23A; Mon,
	28 Feb 2011 10:48:53 +1100 (EST)
Received: from 189-68-86-125.dsl.telesp.net.br (189-68-86-125.dsl.telesp.net.br [189.68.86.125])
	by vampire.isux.com (Postfix) with SMTP id B58F5B901 for <alison@isux.com>;
Mon, 28 Feb 2011 10:48:50 +1100 (EST)
Date: Mon, 28 Feb 2011 10:48:50 +1100 (EST)
From: alison@isux.com
Subject: RE: Your invoice from VIAGRA - #5187
To: alison@isux.com
Message-id: <20110227234852.B58F5B901@vampire.isux.com>
MIME-version: 1.0
Content-type: text/html; charset=ISO-8859-1
Content-transfer-encoding: 7bit
Delivered-to: alison@isux.com
Original-recipient: rfc822;alison@isux.com

<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" 
"http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <
html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="application/xhtml+xml; charset=UTF-8"/>
</head>
<body>
<table border="0" cellpadding="0" cellspacing="0" style="width: 896px">
<tr><td align="center" style="font: normal 11px Verdana, sans-serif; color: #333;">
<a href="http://usadoctorpills6.ru" style="text-decoration: none; color: #0099ff;"
>Click here!</td></tr>

<tr><td align="center">
<br/>
<a href="http://usadoctorpills6.ru"><img src="http://usadoctorpills6.ru/1.jpg" 
style="border-width: 0px"/></a></td></tr>
</table>
</body>
</html>

In this case we have more received headers:

Received: from catapilla.sorbs.net (catapilla.sorbs.net [113.52.8.151])
	by nemesis.sorbs.net (iPlanet Messaging Server 5.2 HotFix 2.05 (built Mar  3 2005))
	with ESMTP id <0LHA00840VAD00@nemesis.sorbs.net> for michelle@shellsshots.com;
	Mon, 28 Feb 2011 09:44:37 +1000 (EST)
Received: from vampire.isux.com (c190-211.i02-8.onvol.net [213.165.190.211])
	by catapilla.sorbs.net (Postfix) with ESMTP id 5F8B42E0D5 for
	<michelle@shellsshots.com>; Mon, 28 Feb 2011 10:44:35 +1100 (EST)
Received: by vampire.isux.com (Postfix) id E7FF3C23A; Mon,
	28 Feb 2011 10:48:53 +1100 (EST)
Received: from 189-68-86-125.dsl.telesp.net.br (189-68-86-125.dsl.telesp.net.br [189.68.86.125])
	by vampire.isux.com (Postfix) with SMTP id B58F5B901 for <alison@isux.com>;

In this case the headers are read from the top down, now I own/manage the hosts nemesis.sorbs.netcatapilla.sorbs.net and vampire.isux.com so reading the ‘by’ part of each received line we know we can trust all these headers.  We also know that the headers are ordered as ‘latest first’ from top down, which means the last server that I own in the headers added the last header:

Received: from 189-68-86-125.dsl.telesp.net.br (189-68-86-125.dsl.telesp.net.br [189.68.86.125])
	by vampire.isux.com (Postfix) with SMTP id B58F5B901 for <alison@isux.com>;

The delivering host was 189.68.86.125 which identified itself as the same as it’s official hostname 189-68-86-125.dsl.telesp.net.br (a Brazilian host) again using Geo-location services such as http://www.maxmind.com/ we know the host is located in Sertãozinho, Sao Paulo, Brazil.

I will be posting a follow up article to this at a later date with more technical information.  Feel free to subscribe to the RSS feed to get the updates.

ИЩЕМ ХОЗЯЕВ!

На автобусной остановке найден маленький щенок (ему по виду 2 месяца), похож на лабрадора, очень ласковый, ручной, приучен к газетке. Наверное кто- то поиграл и выбросил, и я нашла его в снегу. Очень бы хотелось найти для малыша добрых и любящих хозяев! Откликнитесь!

Ищем хозяев!

 

A home has been found for him. Thank you all!