Re: [mailop] Microsoft allows free-form spoofing?

Isn't *.onmicrosoft.com actually valid? Though typically not used, I'm fairly certain it's interchangeable for the user's domain on an Office 365 subscription. I was trying to find something to validate my memory and I think this backs it: https://learn.microsoft.com/en-us/microsoft-365/admin/s

Re: [mailop] Spamhaus DNS issues causing all incoming mail to drop for me

Indeed they shouldn't. The most noteworthy implementation that seems to treat these as false positives is cPanel, I believe. Every single day we run into no less than 3-5 servers which reject emails from us, claiming that we're listed on SH. They seem to almost always be cPanel boxes. On 2022-

Re: [mailop] Update: it's not. Re: T-Online is now really blocking messages from non-commercial and simliar senders

Because this topic appears to be generating so much interest, I'll toss my data into the ring. Data helps everything. I'm typing this progressively as I do the work, so that's why it doesn't read like something in which I've already reached a conclusion before typing it. I know I work my butt

Re: [mailop] gmail: Benefit of a generic SPF-record?

cipient to consider it absolutely not authorized. On 2022-09-29 13:30, Bill Cole via mailop wrote: On 2022-09-29 at 13:15:54 UTC-0400 (Thu, 29 Sep 2022 12:15:54 -0500) Jarland Donnell via mailop is rumored to have said: That little ~ is the part that gets me and I think opens it up

Re: [mailop] gmail: Benefit of a generic SPF-record?

That little ~ is the part that gets me and I think opens it up to any IP more than the parts before it. I always interpret ~ like a shoulder shrug, so as to read this: v=spf1 a mx ~all Like this in english: "I will only send mail from my A record or MX record, or pretty much whatever man, ma

Re: [mailop] How should I interpret DMARC failure reports with "abuse reports"?

I tell all of my customers the same thing I'll say here: If you don't know exactly why you want DMARC reports and what you want to do with them, you shouldn't ask to receive them (which is part of your DMARC DNS record). It's one of those things where no one can really tell you what you should

Re: [mailop] The oligopoly has won.

The difference in philosophy on this topic is actually one of the more interesting discussions I've seen in a while. I'll throw my hat in the ring and see if it shakes loose any additional valuable opinions. I can't block Gmail IPs, at all. It's on average 48% of who my clients communicate wit

Re: [mailop] The oligopoly has won.

I maintain one clear benchmark for outbound, which actually breaks out into 3 things: The clear and consistent ability to email AT&T, Verizon, and Microsoft. Including all sub-brands of each. If you can keep those 3 things alive, you're in the clear. I can't imagine being able to successfull

Re: [mailop] SMTP noise from *.bouncer.cloud

send the applicant a copy of their completed form And that right there is where a lot of my customers get in trouble. It's a shame but these days, you can't even send a "Hello {name}" to anyone from a form or you just end up sending "Hey get_cheap_viagra_at_this_website.tld" though it is mild

Re: [mailop] SMTP noise from *.bouncer.cloud

I think it's fair to say that there is "some" room for nuance on cold email, but the reason I don't allow it on my platform and I actively work to block companies that do, is simply this: There is absolutely no one out there looking for help to send a cold email that isn't sending spam. I me

Re: [mailop] SMTP noise from *.bouncer.cloud

I've seen precisely one thing on this list, on this topic, that I would classify as "bitching" and I'm replying to it. On 2022-09-02 17:13, Christopher Hawker via mailop wrote: Seems like a whole lot of bitching and whinging is going on here regarding bouncer.cloud. Pretty sure this is a mail o

Re: [mailop] SMTP noise from *.bouncer.cloud

Nice find. Here's the IP list I pulled for them as well: https://clbin.com/Fr1IH Probably not worth blocking by IP but some blacklistings might alert hosts to abusive behavior more than "yet another ignored abuse complaint." On 2022-08-31 08:56, Michael Peddemors via mailop wrote: Not just

Re: [mailop] State of the Union - Update due to activity..

That subdomain style, I've been eyeballing that trend for a while. This guy got super mad at me for identifying that trend on a network that hadn't yet started sending spam: https://forum.directadmin.com/threads/rbl_dns_list-suggestion.64780/post-350740 But you see the trend here: https://bgp.

Re: [mailop] outlook with fake sender

I know the ability to write the envelope sender, as the end user, isn't particularly odd for SMTP servers as a whole. But when Gmail accidentally allowed people to do it, they made headlines. Primarily because they're just so heavily utilized that such an event wouldn't be exploited to a small

Re: [mailop] gmail rejecting for invalid SPF/DKIM when there isn't any?

hecks. Less misleading that way, and I’m not saying to my customer “I don’t know why it says that, you don’t seem to have SPF setup…” I mean, yay for more correct SPF, but boo for bad error messages. On Aug 27, 2022, at 5:28 PM, Jarland Donnell via mailop wrote: Google has recent started requ

Re: [mailop] gmail rejecting for invalid SPF/DKIM when there isn't any?

Google has recent started requiring SPF. I don't know if they require it 100% of the time but they do now reject emails from domains that either don't have it, or have it improperly configured, and they won't accept it from those domains until it's fixed. It has helped me a good bit, making it

Re: [mailop] State of the Union, update from the trenches..

RamNode is another network to be on the lookout for. Formerly a great operation when run by Nick, but they sold to InMotion Hosting who seems to be letting anything go. Even emailing ARIN abuse emails results in replies I'll paraphrase as "There's an undocumented hurdle you need to jump through

Re: [mailop] I understand less and less why I accept any mail at all from Sendgrid

Honestly the difference between SendGrid and the top 10 list here seems like it's shrinking every day: https://www.spamhaus.org/statistics/spammers/ On 2022-08-15 19:42, Stuart Henderson via mailop wrote: On 2022/08/16 02:03, Ángel via mailop wrote: On 2022-08-13 at 18:46 -0400, John Levine w

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

If you wouldn't transmit it over plain text but you would transmit it over TLS 1.0, your logic is simply not justifiable. On 2022-08-03 18:22, Bill Cole via mailop wrote: On 2022-08-03 at 17:32:56 UTC-0400 (Wed, 03 Aug 2022 16:32:56 -0500) Jarland Donnell via mailop is rumored to have s

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

ivity. On 2022-08-03 16:02, Bastian Blank via mailop wrote: On Wed, Aug 03, 2022 at 03:05:43PM -0500, Jarland Donnell via mailop wrote: > You clearly see what TLS version and what ciphers were used. So you know > if > it was "secure" in your opinion or not. I don't understa

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

or should be treated as more capable and intentional than an end user doesn't take into account how many end users are mail server operators. On 2022-08-03 14:51, Jaroslaw Rafa via mailop wrote: Dnia 3.08.2022 o godz. 14:28:43 Jarland Donnell via mailop pisze: > There's nothing

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

, etc. If you are using an insecure SSL protocol/cipher, the transactions cannot be called secure. Period. On 2022-08-03 14:26, Jaroslaw Rafa via mailop wrote: Dnia 3.08.2022 o godz. 13:14:07 Jarland Donnell via mailop pisze: It's about proper documentation, expectation, and communica

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

ame way that a desktop user staring at their web browser can't be expected to always be informed or aware of all risk either. Anyway, good topic. On 2022-08-03 14:02, Simon Arlott via mailop wrote: On 03/08/2022 16:46, Jarland Donnell via mailop wrote: It's a pretty big and we

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

The MTA-MTA encryption is weak at best: because the client doesn't (can't, actually) verify that the certificate is appropriate for that MTA, any MITM attack is easily accomplished. End users get virtually no indication that the message was or wasn't encrypted in transit, and there is no accep

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

ns, or is there perhaps something to this security practice? On 2022-08-03 13:16, Bill Cole via mailop wrote: On 2022-08-03 at 13:37:56 UTC-0400 (Wed, 03 Aug 2022 12:37:56 -0500) Jarland Donnell via mailop is rumored to have said: If you must divulge your SSN over the phone (for reasons) do y

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

cure data" and to them it's over. Playing either role in that situation is bad, but being the intelligent admin who cares none for the other guy is worse than just saying up front: "This isn't secure, plan accordingly." On 2022-08-03 12:59, Grant Taylor via mailop wrote: On 8/3/

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

If you must divulge your SSN over the phone (for reasons) do you just blurt it out at normal volume indifferent to who is around? Or do you walk to a secluded corner of the room and cup your hand around the mouth piece? Even questionable security is better than no security in many cases. No, i

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

03 12:03, Grant Taylor via mailop wrote: On 8/3/22 9:46 AM, Jarland Donnell via mailop wrote: It's a pretty big and well respected security practice to consider plain text to be more secure than insecure SSL for one reason: A plain text connection isn't logged or reported as a secure conn

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

Disabling support for less secure transport encryption protocols doesn't increase security if the senders can then switch to unencrypted transport as a fallback. It's a pretty big and well respected security practice to consider plain text to be more secure than insecure SSL for one reason: A

[mailop] Increase in connection issues with eBay emails

I'm wondering if anyone else is seeing the same recently. I've recently begun seeing a bunch of these in my exim logs: 2022-08-01 21:26:14 SSL_write: (from mxphxpool2075.ebay.com [66.211.185.238]) syscall: Connection reset by peer 2022-08-01 21:26:14 SMTP connection from mxphxpool2075.ebay.com

Re: [mailop] Trouble sending to sympatico.ca

I just ran through the last month of SMTP logs and the only error I found was "451 System policy engine error" for sympatico.ca besides "User unknown" (contact form typos it looks like). So for what little it's worth, I think this is either domain or IP reputation. Doesn't have to be for anythi

Re: [mailop] HR 8160 and SB 4409: The "You're not allowed to run political campaign email through your spam filter" act

I think in this case we all know what they're doing and you've hit it dead on. They're targeting Gmail and they're not really interested in anyone else. On 2022-07-30 11:16, Jaroslaw Rafa via mailop wrote: I'm not an American, so it's basically "not my fairy-tale" (as we say in our country), b

Re: [mailop] HR 8160 and SB 4409: The "You're not allowed to run political campaign email through your spam filter" act

The humorous part is that they actually think "label" is in any way a reasonable word to use. Quite easy to comply with, I promise not to apply any labels! I'll just 5xx it... On 2022-07-29 13:32, Anne Mitchell via mailop wrote: I want to be sure that everyone here is aware of a piece of pendi

[mailop] Microsoft PTR record(s) missing

As a heads up to any of our Microsoft contacts, and to anyone else who may see their own filters hitting this today, there appears to be missing PTR records over on the MS side again right now. Most specifically, the IP 40.107.236.10 called it into question on our side. The IP would send it's H

Re: [mailop] Google's Request to the FEC about Allowing Political Email to Bypass Spam Filtering

Is it normal to request such an opinion? As someone who doesn't follow business of the FEC but obviously takes interest in the topic, it seems odd to me though that may be due to the formerly mentioned thing. Earlier this year we saw a huge increase in email business resulting from Google's ha

Re: [mailop] Someone from freenet.de on this list?

Everyone will have an opinion but the root of the matter is simple: You do what you have to do to get your email where it needs to go. If you have options to mitigate the problem, and they don't cause any worse or equivalent problems, that sounds like a good day to me. I don't know about you, b

Re: [mailop] No MX? use A/AAAA

A setup that *requires* from a recipient/sender to have a MX record is *broken*. Period. Talk to Wietse Venema if you disagree :) Be that as it may in opinion, it was my observation that having this limitation has resulted in extremely minimal pushback with extremely significant gain. Everythi

Re: [mailop] No MX? use A/AAAA

I've seen it work but frankly, I don't bother with it anymore. No MX for sender or recipient, I don't send it. This rspamd module right here: https://rspamd.com/doc/modules/mx_check.html While it works, I can't recall the last time someone's mail server matched their A record while they desire

Re: [mailop] [ADDENDUM] Update from .. personal pet peeve

I can't recall if I sent this story to this list, I think I didn't. I've noticed recently that Google is dealing with spam Gmail accounts in mass as they identify them. Sadly the way that I noticed was by having them DDOS attack me, but it's hard to say it wasn't somewhat earned. You see, thes

Re: [mailop] gmail changes today?

e new rule is better. It doesn't even need to be a new rule, maybe your reputation just decreased slightly and it now is below the threshold. Brandon On Wed, Jun 8, 2022 at 10:41 AM Jarland Donnell via mailop wrote: +1 from here. Customers are ticketing in left and right over it. Every one o

Re: [mailop] gmail changes today?

+1 from here. Customers are ticketing in left and right over it. Every one of them has failed to comply with my SPF policy though. The reason though that this confused me for a bit though, Gmail has a different error for SPF failures: "550-5.7.26 This message does not have authentication infor

Re: [mailop] hostgator contact?

It’s been a few years since I worked there but I can’t imagine they’ve changed that much. Aren’t the spam filters all user controlled? At least if not outsourced to an external RBL. On 2022-06-06 20:52, Dave Lugo via mailop wrote: If anyone has a contact at hostgator that can help with a spam

Re: [mailop] How to contact ClamAVNet support

That's open source software, there's no one to get ahold of. The way that you trigger the rule you mentioned is by having an HTML link in your email which shows in it's text to point to one domain, but in reality points to another. To avoid triggering it myself, I'll show you what I mean here:

Re: [mailop] outlook/hotmail (silently!) putting legit msgs into "Junk Email" folder

This is good advice but let's not ignore the simplest answer as well. If you have a Hotmail/Outlook/Office365 account there's a good chance that you have emails from Microsoft in your spam folder. The first time I signed up for Office 365 to test their inbox/spam folder behavior, their email we

Re: [mailop] How "more secure" is actually less secure (regarding Gmail)

For what it’s worth you are now the only person I can personally point to and say “This person types their password every time their email client refreshes instead of storing it in the app.” That’s a painful process, especially for someone who wants their email client (Outlook, Thunderbird, etc

Re: [mailop] Any reason to NOT block the entire .cam domain?

I can't see a single reason not to block .cam, but I will say that I always get myself into trouble when I block a TLD. All it takes is one legitimate sender and my plans are shot. That said, this right here: mnt-by: ashitt You see that, blackhole and never second guess it. That's one

Re: [mailop] Forum/Blog spam turned up to 11

Several of the ones I've seen have been using recaptcha, the latest stuff. That doesn't seem to be throwing them off any. On 2022-05-26 22:13, Scott Mutter via mailop wrote: Are there effective anti-bot measures in place on the form? How effective captcha systems are can be debatable. BUT, if

[mailop] Forum/Blog spam turned up to 11

Over the last week or so I've noticed an exceptional increase in outbound emails from my customers to invalid recipients. Obviously this is problematic but understandable. All of the customers in question run websites that send an email to confirm registration, and all of the recipients are pro

Re: [mailop] FTC Report on Feasibility of Creating a 'Do Not Email' List

So are we making our own list? This happening? I just use this right now: https://www.stopforumspam.com/downloads On 2022-05-17 18:40, Anne Mitchell via mailop wrote: For those who didn't know, you may find this infuria...interesting. Did you know that CAN-SPAM mandated that the FTC look at cre

Re: [mailop] Spamhaus: Get more details about LISTING (Could a DMARC Report Address point to a spamtrap)?

A similar issue (not with spamhaus) crept up recently and I had to do a lot of log diving to find the culprit. Just for kicks and in case you get nothing else of value in reply, any chance that taking the two time frames and comparing them to see what recipients matched is of any value? I guess

Re: [mailop] Spamhaus "open resolver" errors

-free-data-query-service-account/ I recommend it, as they guide you through extra steps to get the most out of the Spamhaus data beyond just simple DNSBL checks. Cheers, Al Iverson On Fri, May 13, 2022 at 11:42 AM Jarland Donnell via mailop wrote: I'm not sure if the rest of you are seeing t

[mailop] Spamhaus "open resolver" errors

I'm not sure if the rest of you are seeing the same, but I've seen a lot of errors like this lately: 554 Service unavailable; Client host [mail-108-mta215.mxroute.com] blocked by sbl-xbl.spamhaus.org; Error: open resolver; https://www.spamhaus.org/returnc/pub/74.63.16.232 It seems that Spamh

[mailop] To Sendinblue, Mailjet, SES, ActiveCampaign, and every other

I need these two email addresses removed from EVERY newsletter on EVERY platform: jarl...@mxroute.com ab...@mxroute.com Sendinblue, Mailjet, SES, ActiveCampaign, and every other company that fits in a category with these companies. I know there are representatives in this mailing list. I am s

Re: [mailop] Internet Research Project on Linode - Any Experience?

Isn't that a bit of an overreaction? If you didn't want any undesirable traffic you'd whitelist IPs in your firewall or run it on LAN. It's a very standard expectation that other servers will hit yours without your consent on the public internet. On 2022-05-06 11:16, L. Mark Stone via mailop w

Re: [mailop] Anyone else seeing increase in iCloud rejections?

u followed that url and emailed, asking why this block occurred? --srs - From: mailop on behalf of Jarland Donnell via mailop Sent: Sunday, May 1, 2022 3:40:44 AM To: mailop@mailop.org Subject: [mailop] Anyone else seeing increase in iCloud rejections? Even changing IP

[mailop] Anyone else seeing increase in iCloud rejections?

Even changing IP space, all emails our customers send to iCloud are currently returning: 454 5.7.1 [CS01] Message rejected due to local policy. Please visit https://support.apple.com/en-us/HT204137 Is anyone else seeing an increase in this? I'm trying to figure out if this is a failure at iC

Re: [mailop] get bulk spam messages

Register a new domain, set a catchall, and make sure the whois address delivers mail to you consistently. You'll be swimming in it. On 2022-04-27 06:59, wilson via mailop wrote: I expect to get lots of spam messages from the realworld to train the bayes. do you know how to get bulk spam message

Re: [mailop] The final death of Mailjet

I realized AFTER sending this that the error says contact@ isn't found. Are they forwarding emails from abuse@ or something? I don't know. Anyway, still want to hear from anyone interested in collaborating on this. On 2022-04-25 15:18, jarl...@mxroute.com wrote: I'd like to encourage other ma

[mailop] The final death of Mailjet

I'd like to encourage other mail providers to begin holding Mailjet accountable for the spam they send. Today, in reaction to receiving 1 abuse complaint per spam email sent from their platform, they finally had enough of hearing about it: Reported error: 550 5.1.10 RESOLVER.ADR.RecipientNotFo

Re: [mailop] Increase in virus activity this week @ MXroute (perhaps others?)

st place. It would be interesting to know some technics on how to catch bad behaviors before they get out of hand and many of us here might be interested in the how-tos and might also learn a lot from this (me first). thank you in advance :) Best, Cyril Le ven. 22 avr. 2022 à 00:57, Jarland Donnel

Re: [mailop] Interesting passage from the new EU Digital Services Act

so do the EU wants us to play as NSA for free ? and pursue us if we don't... ... Le 24/04/2022 à 00:17, Jarland Donnell via mailop a écrit : Admittedly I do like the phrase "becomes aware of" as it should in theory place the burden on a third party to prove awareness. Thoug

Re: [mailop] Interesting passage from the new EU Digital Services Act

Admittedly I do like the phrase "becomes aware of" as it should in theory place the burden on a third party to prove awareness. Though I can't imagine a lot of people become aware of a serious threat against someone's life and then turn the other way, at least not anyone who wouldn't now simply

[mailop] Increase in virus activity this week @ MXroute (perhaps others?)

Hey friends, This week at MXroute we saw an increase in compromised email accounts. Apologies if you saw virus spam coming from our network. Typically, these events are caught instantly. In cases that use new patterns and techniques, under 1 hour. This time, it went on intermittently for about

Re: [mailop] FYI - Google/Gmail hard enforcing SPF presence

To add +1 experience to this, I've been seeing it intermittently. Some of my customers who lack SPF absolutely cannot deliver mail to Gmail, 100% rejection due to lack of authentication. Others, not so much. I can't pretend to know what the criteria is for falling into the former, but it hasn't

Re: [mailop] $GOOG

ote: On 4/13/2022 6:58 PM, Jarland Donnell via mailop wrote: Out of the 140,244 emails delivered to Google by my customers today, not a single one has complained of issues with Google rejecting legitimate email. Even so, keep in mind the following: (1) Their most egregious false positives - ARE

Re: [mailop] $GOOG

If you find an email provider that has no opinion or detractors in relation to how to reject emails or which emails to reject, you'll find a wealth of other complaints that stem directly from this. Out of the 140,244 emails delivered to Google by my customers today, not a single one has complai

Re: [mailop] gmail - pop3 retrieval checking SPF ? ( gmail, wth ? Take 2 )

This is in fact how they do it, and it is quite objectively wrong. SPF is only useful when checking the connecting IP, but since they're not receiving the mail they miss out on that transaction. Reasonable logic would dictate that one should give up attempting to check SPF at that stage or, at

Re: [mailop] AT&T blocking IP addresses

On 2022-03-28 17:58, Jay Hennigan via mailop wrote: On 3/28/22 15:30, Graeme Slogrove via mailop wrote: For assistance forward this error to abuse_...@abuse-att.net Did you do that? Personally I've done that many times. Seems like you have to know someone,

Re: [mailop] Pretty convincing ICANN renewal notice making the rounds..

Is this another one of those "research" things where someone does evil and then claims to have good motives? That website renam.md kind of seems like it. On 2022-03-21 11:57, Michael Peddemors via mailop wrote: Authenticated from FastHosts.. Source: Received: from mail.renam.md (HELO mail.re

Re: [mailop] USPS mailing

Do you know if email-special.usps.com will be part of the envelope sender or just the From header? I'd like to whitelist for the week but I'll have to build an extra filter for it if it's just the From header. On 2022-03-04 12:05, Matthew Stith via mailop wrote: Hey there Mailop folks, On Mon

Re: [mailop] What the f**k, Google?

If you change your DMARC to reject instead of quarantine, Google will outright reject these. If you're looking at an attack this significant in scope, it may be worth doing. root@gw:~# dig TXT _dmarc.sender.net +short "v=DMARC1; p=quarantine; ruf=mailto:ab...@sender.net; pct=100" On 2022-03-02

Re: [mailop] Google Admins?

I found out recently that two of my customers were involved in this kind of activity (before being swiftly terminated). One user had over a million Gmail accounts. The reason I tell the story, Google sent them emails about account suspension. One email per user. Their backup emails were set to

Re: [mailop] Info on deluxe.com

Interestingly, Deluxe also owns a network historically known for high volumes of spam, brute force, botnets, and things of that nature: https://www.colocrossing.com/blog/colocrossing-acquired-by-deluxe-corporation/ Always seemed out of character to me for their primary business, but I've alway

Re: [mailop] Gmail POP3/SMTP and issue with SPF record

SPF should be checked against the connecting IP, but because that's not a viable option with a POP3 import Google does this horrible thing of checking a Received header and comparing SPF there. The only way to fix this is to build your infrastructure around the entire concept and potentially br

Re: [mailop] Google considers DMARC reports to be unsolicited mail :(

From massive amounts of observation, I'm quite confident in saying that the rejection message in question is based on content filters and not IP reputation. All day long we see rejections like this when users try to forward spam or try to forward email from certain domains (Facebook, eBay, PayP

Re: [mailop] MagicMail / MIPSpace Listing

It's not worth the effort to reach out to them. They're extremely condescending and god-like in attitude. Effort is best spent lobbying users to not support their software. On 2022-01-29 19:24, joemailop--- via mailop wrote: A server manage is also listed on All and Poor lists. I did a search

Re: [mailop] Forms vs email abuse reporting

Some may see that as a good thing. It's the old Office Space scene where one thing happens and the guy has multiple bosses come by and tell him the same thing all day long. When I worked at a big cloud I'd catch a spammer and terminate them, then I'd have to talk to 16 different people over the

Re: [mailop] And just after I spoke up for Linode being not bad ;)

Same thing happened at a similar cloud when I worked at it, we had Gsuite email and no one saw it coming. Most companies seem to be using abuse forms to make up for it and to some degree I get it, forms require intentional input where as people dumping fail2ban logs (and similar) at abuse@ emai

Re: [mailop] What am I supposed to do with abuse complaints on legit mail?

They do want to reserve it for themselves and it's not unreasonable. If you own IP space it is your job to ensure that it isn't abused. If you give up the receiving of abuse complaints and give it to your customer instead, and you don't receive the complaints as a result, then you won't be awar

Re: [mailop] What am I supposed to do with abuse complaints on legit mail?

I feel like I'm piling on with all of the great opinions on the topic already, but I like to share what I know even if it isn't much. The only feedback loop I have to look out for is Fastmail. They send their feedback loop through Senderscore like many other providers, but unlike others sent t

Re: [mailop] What a drag it is sending DMARC reports

Honestly, this is the kind of reason why I refuse to send DMARC reports. DMARC has become mainstream enough that far more people have a DMARC record than actually know what it's for. The number of my own customers who I see rejecting DMARC reports from Google is astounding, and further solidifi

Re: [mailop] GMAIL marking random emails as spam and rejecting.

I've seen a sharp increase in this recently. I can't recall how long ago it was, but there was a moment in time where Gmail had listed bit[.]ly as dangerous for whatever reason, and people saw a lot of emails rejected because they had shortened links using the bit[.]ly service in their signatur

Re: [mailop] Ethics Complaint to Princeton

This one fell off of my radar. I did a search and found my logs to be littered with it as well. I only hope the student finds and clicks the comment I left on the commit: https://github.com/mxroute/rspamd_rules/commit/18f7dfc1801e06fee7adef33df6347e428b22576 On 2021-12-15 18:07, yuv via mailop

Re: [mailop] Is outlook.com blocking all Linode IPv4 space?

A worthwhile note is that, at least in my experience, the messaging there can be a bit misleading. I've removed my old blog where I proved it with logs, but what it basically amounted to was this: I have many times received that exact error, and had the next email accepted by their systems less

Re: [mailop] Office 365, Please try again later ATTR3

While I know a negative isn't extremely helpful, I like to think of my logs as a fairly decent sample size so it's at least a data point. I can find no instance of the string "ATTR3" in our logs for the last month. However, I found this interesting as it seemed to come from a place of knowledge

Re: [mailop] spamhaus blocking Linode IPv6 (2a01: 7e01)

Aye. We use Debouncer for our notifications. HetrixTools has also proven quite useful. Monitoring blacklists for a large number of IPs can scale into a bit heavier of a task than some might assume up front. But on that note, I worked for a very large cloud provider for a few years. Really quit

Re: [mailop] Speaking of Linode (thread topic changed)

Cloudways most likely has their SMTP block disabled by default. Cloudways deploys managed Wordpress VPS on various cloud providers, Linode being one. Of course, their managed isn't like a fully shared managed platform where everything is tightly controlled, so Wordpress compromises are just as

Re: [mailop] spamhaus blocking Linode IPv6 (2a01:7e01)

In all fairness, some of these systems may have been deployed before we were all really certain that a /64 per customer was going to be an accepted standard. You know how RFCs go, they're the law of the land except when they're not, which is actually pretty often. By now most should have figure

Re: [mailop] spamhaus blocking Linode IPv6 (2a01:7e01)

Blacklists tend to target a whole /64 at once for IPv6 and this is standard behavior. I just looked at my two Linode VMs and both have one IPv6 from the same /64. It's possible that Linode is assigning a /64 per customer and that no one else is in the same /64 as you. This is a reasonable expec

Re: [mailop] Is there any analysis on root causes of mail account break-ins?

There's an idea I've been toying with for a long time, and it's not particularly revolutionary. But almost no one is doing it this specifically, and I think it would be an excellent show of competency for anyone willing to go that slightly extra mile. If you can get the passwords that are goin

Re: [mailop] Large volume of script spam related to liberachat false-flag

Some speculate it's the same person doing the string of datacenter bomb threat emails, but I don't know if I agree. Rather, I think this form of email bombing people's inboxes to direct attention in relation to personal vendettas seems to be catching on. It'll only get worse before it gets bett

Re: [mailop] 0spam.org DNSBL SERVFAIL

This is who runs it: https://area51services.com/ On 2021-11-12 16:02, Slavko via mailop wrote: Dňa 12. novembra 2021 20:30:25 UTC používateľ Michael Peddemors via mailop napísal: If you check mxtoolbox or hetrixtools, and see an IP listed, but you don't see it listed in your queries, or block

Re: [mailop] cloudapp.azure.com spamming again

That's me. In my second run through I seem to have successfully not listed any used by Office 365, and anything else legitimate that doesn't send mail I generally don't worry about hitting. Casting too wide of a net is only a problem if it catches something you don't want it too. That said, I s

Re: [mailop] cloudapp.azure.com spamming again

Did they start unblocking SMTP on Azure? This hadn't crossed my desk yet, but when I search for "cloudapp.azure.com" across my fleet I'm immediately flooded with absolute junk. I grabbed a list of IPs from just the most recent logs since rotation: https://clbin.com/z5D8t The word "Bitcoin" is

Re: [mailop] Gmail - messages to self accepted by SMTP, not delivered

I've had customers repeatedly approach me about a similar issue and I ended up writing this in mass response: https://mxroute.com/docs/im-forwarding-or-retrieving-email-to-at-gmail-and-when-i-send-a-test-email-from-the-same-address-that-will-ultimately-be-receiving-it-it-doesnt-work/ I could pr

Re: [mailop] IMAP and SMTP in the same or separated IPs?

If I separated mine it would only be to break out and load balance Dovecot on it's own for performance. Even then it would just be one of many ways to go. On 2021-10-15 10:15, Leandro Santiago via mailop wrote: Hi list, In which scenarios are there advantages on having IMAP and SMTP on differ

Re: [mailop] Fighting spam

Since you use SpamAssassin, you are welcome to use my rule set: https://config.mxroute.com/spam/local.cf It's automatically updated every day based on my rspamd rules: https://github.com/mxroute/rspamd_rules On 2021-10-14 16:20, Mohit Godiya via mailop wrote: Hey All, I am sure this topic h

Re: [mailop] SendX?

I have none, and ordinarily I would take that as a reason to not respond. However, I was highly motivated by the first Google result, which was a paid advertisement, which immediately stated "Sendx.io - No More Monkey Business - We Will Never Ban You." I can't bring myself to read "we will nev

Re: [mailop] Weird delays for email forwarded to Gmail

Fair. To be frank, when I appear to blame all of my challenges on Google it isn't actually blame in the traditional sense. Today is a good day, things are more balanced than some days. That means today 40% of all outbound mail from customers is going to Gmail. Next in line, 4% to Hotmail. Of co

Re: [mailop] Weird delays for email forwarded to Gmail

ates the random user. No matter what you do there are trade offs when trying to force one system to act as a front-end for another, where both systems are managed by someone else. On 2021-10-12 14:04, Jaroslaw Rafa via mailop wrote: Dnia 12.10.2021 o godz. 13:18:12 Jarland Donnell via m

<    1   2   3   >