VPN active~ true gmail still tells origin?

[THAIPHUKET]

I'm trying to understand the limits of a

VPN.

Friend argues that VPN does not disguise from where gmail originates because all of that is shown in meta data of my gmail.

True or false?

 

Sent from my [device_name] using http://Thailand Forum - Thaivisa mobile app

 

 

[RichCor]

If you are using web-based gmail, then you can simply use the "Show Original" option to see what 'meta data' is actually included in any email received. Pick a message from a gmail user to see how that differs. There are online website resources available where you can copy/paste these email 'headers' to that can assist with making all the elements a bit more human readable.

 

Web-based gmail 'headers' will normally include your current machine client IP, Internet-facing IP, Google SMTP handling your session, and google proprietary tokens. While using a VPN, these should be the VPN and VPN exit node related IP data. If sending web-based gmail, Google Services will also attempt to use browser cookie data and record other markers, tokens or physical machine meta-data available via javascript, or directly to the browser via a web session, though this extra data will not be included in the email headers themselves but may be recorded and used internally by Google.

 

If I use a corporate VPN and send web-based gmail, the gmail headers would show it originating from that corporate network. But Google Services private session logs could show details otherwise. Plus Google would have all previous private session logs to cross-reference.

 

If I use a geo-relocation VPN service, many of IP addresses used have been mapped by other services so someone reading the headers could deduce that the gmail was sent while using that service. But the web-based gmail headers usually don't reveal the true physical location of the user, only the client IP, Internet-facing IP, and Google SMTP handling the session. The gmail looks to have originated only from the VPN and VPN exit node.

 

Added:  Ask your friend to show you what headers he's talking about.

Edited January 2, 2018 by RichCor
added added

[oldcarguy]

is there a way to block this info from being sent  at all ?

 

or is the only way is to  disguise you location by a VPN ?

 

and does Hotmail etc do the same thing ?

[janclaes47]

As far as I'm aware with Gmail it's never possible to find out from where the email is sent, since Gmail doesn't include that info in their headers.

[oldcarguy]

is that sending thru Gmail or receiving an email from lets say Hotmail.com ?

 

and would the time sent give a clue to the area ?

so you could tell if sent from BKK or London time zone

Edited January 2, 2018 by oldcarguy