I didn't check the headers, so I didn't notice this. That is very convincing that it is not Satoshi. But how can that domain name be spoofed? Does the sender set that name or is it done by the receiving server?
Here's apparently the person who sent it, explaining how he did it.In SMTP (the email protocol), you start your connection by saying who you are via a command like
HELO bitcointalk.org ("hello, I'm bitcointalk.org"). Most servers will then check that the IP address you're connecting from actually matches the hostname you give, and if not will immediately drop the connection. But the mailing list's server is apparently really stupid, and just blindly believes that any given hostname is actually accurate. So you could tell it
HELO whitehouse.gov and the server will believe that you're whitehouse.gov. Or whatever.