On Thu, 14 Mar 2019 13:27:30 +0000, Jan Mollenhauer via mailop
<[email protected]> wrote:
>Hello,
>
>we are an email service provider. Our customers use our software to send
>newsletter.
>Our software and servers are configured with all best practices like SPF,
>DKIM, DMARC, RDNS. We have also processes implemented for processing bounces,
>feedbackloops, unsubscribes and DOI subscriptions.
>
>Now we are getting blocked by Spamhaus SBLCSS with almost all of our ip
>addresses.
>The IPs are from different networks and being used by different customers of
>us over multiple servers and for different subscribers.
The CSS is a "snowshoe" list -- IPs that have been used to send spam in ways
that are an apparent attempt to spread out the sending in such a way that it
evades spam filters, or persists until the sending IPs/domains are blacklisted
six ways from Sunday.
One way for this to happen to an otherwise innocent ESP is if some of your
clients have been sending out their spam from different ESPs. In my CSS spam
sump, most of the "newsletters" this week are for the latest prices on
Erectile Dysfunction remedies, tactical flashlights and bogus stock offerings.
In many cases the identical "newsleetter" will come from several different
sources, some of which appear to be ESPs.
When the spam stops, the listings will expire.
mdr
--
"There will be more spam."
-- Paul Vixie
_______________________________________________
mailop mailing list
[email protected]
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
