Re: [Mailman-Users] Fwd: Yahoo, AOL again

[Mark Sapiro]

On 11/18/18 4:46 PM, Jim Dory wrote:

> So looking at the EXIM config on the host VPS server, there is a
> Section:RETRYSTART that is blank, A RETRYBLOCK that has this:
> 
>  +secondarymx   *   F,4h,5m; G,16h,1h,1.5; F,4d,8h
> *  *   F,2h,15m; G,16h,1h,1.5; F,4d,8h
> 
> And a RETRYEND which is blank. So I suppose the RETRYBLOCK is where the
> edit would go.


I don't think you need any changes here. I'm not sure what the
+secondarymx entry matches, but the default

*  *   F,2h,15m; G,16h,1h,1.5; F,4d,8h

says retry every 15 minutes for 2 hours, then at intervals starting at
one hour and increasing by a factor of 1.5 until 16 hours have passed,
then every 6 hours up to 4 days, after which if the message is still not
delivered, it is bounced.

This is a common strategy and should be OK.

-- 
Mark Sapiro The highway is for gamblers,
San Francisco Bay Area, Californiabetter use your sense - B. Dylan

--
Mailman-Users mailing list Mailman-Users@python.org
https://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
https://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Re: [Mailman-Users] Yahoo, AOL again

[Mark Sapiro]

On 11/18/18 3:43 PM, Jim Dory wrote:
> On Sun, Nov 18, 2018 at 1:48 PM Mark Sapiro  wrote:
> 
>>> Apple has recently started publishing p=quarantine for its
>>> {mac|me|icloud}.com domains. If you don't include p=quarantine
>>> (dmarc_quarantine_moderation_action = Yes) in your DMARC mitigations,
>>> you need to do so.
>>
>> Thanks much Mark for quick reply.
>>
>> So my CPanel seems to only let me add an A, CNAME, MX record ... no TXT
>> option available. If I log into WHM interface, under Edit DNS Zone, I can
>> enter the following:
>> Domain=  _dmarcTTL = 14400   Type = TXT  and TXT= v=DMARC1;
>> p=quarantine; sp=none; rf=afrf; pct=100; ri=86400
>>
>> When I hit save, it just shows v=DMARC1 , when I check back. I've also
>> just entered v=DMARC1;p=quarantine;pct=100; with same result. This is from
>> following some online tutorials for various hosts.


You are publishing a DMARC record for your domain. This may or may not
be desirable depending on your situation, bet if you do this, you also
need to ensure that all outgoing mail from your domain is DKIM signed.

What I was referring to is the DMARC mitigations within Mailman.  I.e.,
in the web admin UI for your list at Privacy options... -> Sender
filters, you want to ensure that dmarc_moderation_action is Munge From
or Wrap Message as desired and dmarc_quarantine_moderation_action is Yes.

-- 
Mark Sapiro The highway is for gamblers,
San Francisco Bay Area, Californiabetter use your sense - B. Dylan

--
Mailman-Users mailing list Mailman-Users@python.org
https://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
https://mail.python.org/mailman/options/mailman-users/archive%40jab.org

[Mailman-Users] Fwd: Yahoo, AOL again

[Jim Dory]

On Sun, Nov 18, 2018 at 1:48 PM Mark Sapiro  wrote:

>
>
>
> The Yahoo page at 
> has some tips. You may need to adjust the retry strategy of your MTA.
>
>
>
>
So looking at the EXIM config on the host VPS server, there is a
Section:RETRYSTART that is blank, A RETRYBLOCK that has this:

 +secondarymx   *   F,4h,5m; G,16h,1h,1.5; F,4d,8h
*  *   F,2h,15m; G,16h,1h,1.5; F,4d,8h

And a RETRYEND which is blank. So I suppose the RETRYBLOCK is where the
edit would go. This server is basically just handling the mailman list,
plus some very small traffic from server reports, website stuff (very
rare), and other stuff not worth mentioning. So a couple attempts in case
some server or service is down somewhere temporarily.. but otherwise I
hardly think it should be trying for what looks like 4 days, if this is
what I'm correctly seeing. Any one have thoughts on how to edit, given that
qualification?/jim
--
Mailman-Users mailing list Mailman-Users@python.org
https://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
https://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Re: [Mailman-Users] Yahoo, AOL again

[Jim Dory]

Nevermind.. got it to take with some playing around. thanks and apologies.

On Sun, Nov 18, 2018 at 2:43 PM Jim Dory  wrote:

>
>
> On Sun, Nov 18, 2018 at 1:48 PM Mark Sapiro  wrote:
>
>>
>>
>>
>> >The Yahoo page at 
>> >has some tips. You may need to adjust the retry strategy of your MTA.
>>
>>
>>
>> >Apple has recently started publishing p=quarantine for its
>> >{mac|me|icloud}.com domains. If you don't include p=quarantine
>> >(dmarc_quarantine_moderation_action = Yes) in your DMARC mitigations,
>> >you need to do so.
>>
>> Thanks much Mark for quick reply.
>>
>> So my CPanel seems to only let me add an A, CNAME, MX record ... no TXT
>> option available. If I log into WHM interface, under Edit DNS Zone, I can
>> enter the following:
>> Domain=  _dmarcTTL = 14400   Type = TXT  and TXT= v=DMARC1;
>> p=quarantine; sp=none; rf=afrf; pct=100; ri=86400
>>
>> When I hit save, it just shows v=DMARC1 , when I check back. I've also
>> just entered v=DMARC1;p=quarantine;pct=100; with same result. This is from
>> following some online tutorials for various hosts.
>>
>> Still haven't googled "retry strategies for MTAs" yet.  /jd
>>
>
--
Mailman-Users mailing list Mailman-Users@python.org
https://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
https://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Re: [Mailman-Users] Yahoo, AOL again

[Jim Dory]

On Sun, Nov 18, 2018 at 1:48 PM Mark Sapiro  wrote:

>
>
>
> >The Yahoo page at 
> >has some tips. You may need to adjust the retry strategy of your MTA.
>
>
>
> >Apple has recently started publishing p=quarantine for its
> >{mac|me|icloud}.com domains. If you don't include p=quarantine
> >(dmarc_quarantine_moderation_action = Yes) in your DMARC mitigations,
> >you need to do so.
>
> Thanks much Mark for quick reply.
>
> So my CPanel seems to only let me add an A, CNAME, MX record ... no TXT
> option available. If I log into WHM interface, under Edit DNS Zone, I can
> enter the following:
> Domain=  _dmarcTTL = 14400   Type = TXT  and TXT= v=DMARC1;
> p=quarantine; sp=none; rf=afrf; pct=100; ri=86400
>
> When I hit save, it just shows v=DMARC1 , when I check back. I've also
> just entered v=DMARC1;p=quarantine;pct=100; with same result. This is from
> following some online tutorials for various hosts.
>
> Still haven't googled "retry strategies for MTAs" yet.  /jd
>
--
Mailman-Users mailing list Mailman-Users@python.org
https://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
https://mail.python.org/mailman/options/mailman-users/archive%40jab.org

Re: [Mailman-Users] Yahoo, AOL again

[Mark Sapiro]

On 11/18/18 1:51 PM, Jim Dory wrote:
> 
>  " @yahoo.com
> host mta5.am0.yahoodns.net [98.136.102.54]
> SMTP error from remote mail server after pipelined MAIL FROM:<
> nome-announce-boun...@nomekennelclub.com> SIZE=7608:
> 421 4.7.0 [TSS04] Messages from 198.252.110.38 temporarily deferred due
> to user complaints - 4.16.55.1; see
> https://help.yahoo.com/kb/postmaster/SLN3434.html:
> retry timeout exceeded"


The Yahoo page at 
has some tips. You may need to adjust the retry strategy of your MTA.


> I'm also getting a few bounces from .me and .icloud accounts.. But that may
> be a different issue.. I don't know:
> 
> " @me.com
> host mx3.mail.icloud.com [17.178.97.72]
> SMTP error from remote mail server after end of data:
> 550 5.7.1 [CS01] Message rejected due to local policy. Please visit
> https://support.apple.com/en-us/HT204137;


Apple has recently started publishing p=quarantine for its
{mac|me|icloud}.com domains. If you don't include p=quarantine
(dmarc_quarantine_moderation_action = Yes) in your DMARC mitigations,
you need to do so.

-- 
Mark Sapiro The highway is for gamblers,
San Francisco Bay Area, Californiabetter use your sense - B. Dylan

--
Mailman-Users mailing list Mailman-Users@python.org
https://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
https://mail.python.org/mailman/options/mailman-users/archive%40jab.org

[Mailman-Users] Yahoo, AOL again

[Jim Dory]

For the last couple months I have been getting bounces from yahoo and aol
subscribers. Hundreds a day, depending on list traffic. I think some mail
gets through to them (the yahoo subscribers) but a lot gets bounced, if not
all. None of the the subscribers have complained anyway about not receiving
messages.

Not sure what to do. I had been on Yahoo's what-cha-call-it when a user
complains or marks a message as spam, I would be able to tell what users
from a report Yahoo would send me. Assume I'm still subscribed to that
service, but have not received any for a long time.. maybe this past summer
got one or two. The bounces are similar to what follows:


 " @yahoo.com
host mta5.am0.yahoodns.net [98.136.102.54]
SMTP error from remote mail server after pipelined MAIL FROM:<
nome-announce-boun...@nomekennelclub.com> SIZE=7608:
421 4.7.0 [TSS04] Messages from 198.252.110.38 temporarily deferred due
to user complaints - 4.16.55.1; see
https://help.yahoo.com/kb/postmaster/SLN3434.html:
retry timeout exceeded"

I'm also getting a few bounces from .me and .icloud accounts.. But that may
be a different issue.. I don't know:

" @me.com
host mx3.mail.icloud.com [17.178.97.72]
SMTP error from remote mail server after end of data:
550 5.7.1 [CS01] Message rejected due to local policy. Please visit
https://support.apple.com/en-us/HT204137;
--
Mailman-Users mailing list Mailman-Users@python.org
https://mail.python.org/mailman/listinfo/mailman-users
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Unsubscribe: 
https://mail.python.org/mailman/options/mailman-users/archive%40jab.org