Am 02.01.26 um 09:06 schrieb Michael Grimm via mailop:
John Levine via mailop<[email protected]> wrote:
Hosting your own is fine if you are careful about where you host, preferably
some
place which blocks port 25 by default and you have to ask to get it unblocked.
I
would not try to host mail at Linode or Digital Ocean or Hetzner or OVH or other
large cheap VPS providers.
FYI: Hetzner blocks port 25 by default, now. You have to ask Support to get you
unblocked.
That does not prevent scammers like the SumUp phisher that I've been reporting since 2024-11 and that is still sending
phishing mails via Hetzner:
2025-12-31:
* mta.greenrosebookkeeping.com[91.107.225.25]
* mta.ironcoyotepark.com[77.42.68.25]
* mta.hibarbuilders.com[77.42.71.16]
2026-01-02:
* crawfordtransportation.com[77.42.71.16]
* crawfordlogisticsandassociates.com[167.235.74.241].
Pointing to phishing pages at GoDaddy IP 37.148.206.172:
* smu.proyectodei.org.mx
* smu.fundacionproyectodei.org
* smu.proyectodei.org
* sup.ironcoyotepark.com
* sup.greenrosebookkeeping.com
Looks like whatever checks are performed by Support before granting port 25 outgoing access are ineffective and don't
prevent scammers from utilizing Hetzner services.
Cheers,
Hans-Martin
(Sorry for the rant, I would really love if that would be the only one in 2026)
_______________________________________________
mailop mailing list
[email protected]
https://list.mailop.org/listinfo/mailop
