> Google has never honored any SpamHaus listing whatsoever Yeah I know they don't use SBL, but their systems should be able to identify complete garbage networks like the ones listed in DROP. I mean, if you're accepting mail from dumps like this, what's next? Accepting mail directly from botnets on consumer internet ranges?
[image: Sender] Edgar Vaitkevičius, founder / CEO ed...@sender.net On Wed, Mar 2, 2022 at 12:19 PM Richelo Killian <richelo.kill...@imnica.com> wrote: > As far as I am aware, Google has never honored any SpamHaus listing > whatsoever. Countless times over the years I have received spam in my > inbox, and when I dig in, everything related to the email is listed in > Spam, but Google ignores it. > > Always been like that as far as I know. > > Kind Regards, > > Richelo Killian > > On 2March, 2022 at 11:59:10, Edgaras | SENDER via mailop ( > mailop@mailop.org) wrote: > > Hi all, > > sorry, I can't describe the stupidity and incompetence of Gmail systems > lately without resorting to expletives. Seriously everyone, see for > yourselves. > Gmail is now accepting mail from Spamhaus EDROP listed spam ranges: > > 176.56.220.0/24 > 176.56.221.0/24 > 176.56.222.0/24 > > Which are all included here in > https://www.spamhaus.org/sbl/query/SBL442803 > > None of those networks are included in our SPF, which has -all. > From,To,CC,Subject,Date headers are all oversigned to prevent DKIM replay > attacks. > And yet Gmail still somehow accepts mail from these ranges, and thinks > it's authenticated. > > Google, how much more of a stink there has to be for someone to pay > attention to this issue? I did not publicize this issue on purpose - so > that other spammers would not take advantage of this weakness in your spam > filter. Do we have to announce this on Hacker News, Reddit and elsewhere? I > don't think that it's only our domain's reputation being abused this way, > and a lot of people are exposed to spam/scams, so we will have to go public > if this does not get fixed urgently. > > PS: The following networks are also participating in this attack, so it's > safe to presume they are under the control of the same spam gang, which > operates the above-mentioned networks in DROP list. Spamhaus, I know you're > on the list - feel free to escalate those listings to DROP: > > 103.110.248.0/24 > 103.110.249.0/24 > 103.110.251.0/24 > 103.205.17.0/24 > 103.205.18.0/24 > 103.205.19.0/24 > 103.217.82.0/24 > 162.251.248.0/24 > 162.251.249.0/24 > 162.251.250.0/24 > 162.251.251.0/24 > 162.251.252.0/24 > 162.251.253.0/24 > 162.251.254.0/24 > 162.251.255.0/24 > > > > [image: Sender] Edgar Vaitkevičius, founder / CEO > ed...@sender.net > > > _______________________________________________ > mailop mailing list > mailop@mailop.org > https://list.mailop.org/listinfo/mailop > >
_______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
