This is a long message, partly because it is a complex question and partly
because I can never explain things succinctly.
I need some advice about a troublesome USENET forgery allegation.
I got an e-mail through channels where a woman (A) who has nothing to do
with my agency was claiming that someone forged several posts to one of
those unmentionable alt.sex groups using her e-mail address.
She says her Internet provider traced the post to an IP address. This IP
address belongs to an employee in my group (B). Our newsreader does not
allow posts to any alt groups. I do not want to confont B (or his direct
supervisor) until I know more about the situation.
There are lots of possibilities here, but I want some indication as to
which ones are likely or unlikely, and if there are other possibilities I
1. A is making the whole thing up, either to embarrass B or to embarrass
2. B made an amateurish attempt to forge a post.
3. C (an unknown person who knows A and B) created a double forgery,
listing the e-mail address of A and leaving an easily traced path to B.
4. C (an unknown person who does not know A and B) wants to embarrass our
5. C (an unknown person who knows A but not B) uses a random IP address to
cover his/her tracks. (Is this really necessary?)
6. D (a coworker of B) is up to no good and uses the computer of B to
cover his/her tracks.
Are there other possibilities I should consider? What is a good way to
investigate this? This is a minefield, and I want to tread carefully.
My apologies if this is the wrong newsgroup. Please direct me to the
right spot if I am off topic. I never expected to be handling situations
like this. <sigh>
Standard disclaimer applies.