On 06/10/17 10:51, Otto J. Makela wrote:
> Are you keeping an eye out for (mostly Chinese) botnets doing slow IMAP scans,
> using scraped email addresses and apparently going through whole dictionaries?
I haven't seen them. But we are getting a lot more SMTP auth scanners
than we used to.
We jus
On 07/10/17 00:30, Philip Paeps wrote:
> I don't consider a long random password the user can't change
> particularly insecure.
It's not too bad really, if the password is per application and saved.
Lots of corporates have single sign on. Same password everywhere in
business.
In theory,
On 05/04/18 19:20, Ryan Harris via mailop wrote:
> If we advertised (announced) IP space with a /20 CIDR via BGP for
> months, then stopped that advertisement for 7 days and re-advertised
> but with 2 different /21 CIDR ranges, would this produce a negative
> effect to our IPs reputation?
>
> I
On 04/05/18 11:55, Stefano Bagnara wrote:
> BTW not every data processing/publication require consent according to
> GDPR. There's "legitimate interest" and it may have to be discussed if
> publishing that data do harms more than not-publishing it.
legitimate interest
vital interest
necessary for
On 22/05/18 15:47, Al Iverson wrote:
> Are folks disabling TLS1.0 support in SMTP? Our security team has
> asked, but I'm a bit concerned about potential failure cases when
> trying to deliver mail to smaller corporate sites that might be doing
> stuff like requiring TLS but supporting 1.0 only
On 16/10/2018 08:08, Patrick Ben Koetter wrote:
DNSSEC is an investment into your business relationship. Your partners benefit
from it. It provides them a reliable resource to build other things upon. It
removes the need to believe and provides the certainty to know. This said, it
is one of the k
On 18/03/15 01:48, Michael Ellis wrote:
> One client of mine (who often talks of gaming gmail or Yahoo) used to say
> they were considering just giving every new customer their own IP to send to
> them. Millions of customers millions of IPs used to send, one per unique
> email address using IPv6
On 31/03/16 17:38, Kirk MacDonald wrote:
> With thanks to Google for pushing the cause, I implemented STARTTLS
> functionality on my org’s MX (as well as outbound SMTP with
> opportunistic STARTTLS).
Firstly - well done for doing it. Everybody should be enabling TLS.
Did you test the install?
On 11/11/16 03:15, Bill Cole wrote:
>
> I think it's a perfectly reasonable TTL for a mail system that uses
> round-robin DNS for loadbalancing and high availability. Arbitrarily
> forcing it higher on the client end could have unintended negative
> consequences.
(quick reply)
The other questi
don't know why this is. But came around because I need to run the
older exim until I've solved another problem.
exim4-daemon-heavy 4.92-8+deb10u1 from Debian Buster works fine. TLS1.3
does work.
--
Tim Bray
Huddersfield, GB
t...@kook
”.
So, in past life I used the Python Unidecode library to sort similar
problems (not in email)
https://pypi.org/project/Unidecode/
See also
https://metacpan.org/pod/Text::Unidecode
As for emoji specific, I don't know.
--
Tim Bray
Huddersfiel
On 03/10/2019 08:46, Neil Youngman via mailop wrote:
It is now October. The emails are still coming and there has been no
further communication from CSA.
I'd be tempted to complain to the information commissioner. You are
lucky because you actually know who is sending the stuff, and they ar
Hi,
I think you really need to use your own recursive resolver to use
spamhaus. Like install unbound and use localhost as resolver.
like using 8.8.8.8 results in no answer. Maybe your ISP's resolvers
have the same problem. Does your provider transparently proxy port 53
traffic?
Tim
Hi,
Weird problem.
We have a system that sends order updates to our customers. Plain text
emails. Not changed for years. Same system, same customers.
We suddenly have a problem for some where customers receive the email,
but it looks blank. The problem has only occurred with people using
be great (not hotmail or Microsoft here)
--srs
*From:* mailop on behalf of Tim Bray via
mailop
*Sent:* Tuesday, November 26, 2019 3:40 PM
*To:* mailop@mailop.org
*Subject:* [mailop] Blank emails to office 365
Hi,
Weird p
On 27/01/2020 12:57, Lennert Van Alboom via mailop wrote:
Alternatives?
https://www.migadu.com/
Tim
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
On 02/02/2020 18:48, Matthias Leisi via mailop wrote:
From one particular IPv6 range, each and every DNS query was sent from
a unique IPv6 /128, and every /128 seen was used exactly once.
Um, I do this. To guard against cache poisoning attacks. Each
nameserver has a /64 to use for outgo
from mailchimp too, so I don't want to
globally do a mass block.
(sorry mailchimp, you are like the best mailinglist people, so more
comes from you)
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https
. Why not just try the 1
address of your mailserver (I'd be suspicious of such a wide range of
space for sending mailservers)
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
but it is
possible to have it working.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
chimp, so I'll see what comes
back. I guess depends whether mailchimp think they are governed by GDPR
or not.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
it of the url in the
List-Unsubscribe ??
List-Unsubscribe: <https://cloud-distribution.us20.l
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
other?
Tim
//
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
Hi,
Anybody else seeing increase phishing through sendgrid? They look
fairly convincing.
A few paypals, and a few amazons.
I thought sendgrid were ok? Has somebody leaked a big pile of
sendgrid usernames and passwords or something?
--
Tim Bray
Huddersfield, GB
t...@kooky.org
imits the damage.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
e first to change something if we were.
Maybe we did nothing wrong and just tripped a rate limit, filter or
keyword or something.
Tim Bray
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
decide they want to block ping,
and so firewall all ICMP, they need sending back to networking school)
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
a compromise in some other software which allows
people to easily steal sendgrid credentials.
(of course, none of this helps if you are looking at your inbox and
seeing more phishing)
--
Tim Bray
Huddersfield, GB
t...@kooky.org
+44 7966479015
___
mail
well.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
rs on their business
letters, order forms and websites"
Why t-mobile want to white list, I don't know. But you can be sure they
don't get random spam from random compromised home broadband or cloud
servers.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
On 30/09/2020 08:17, Patrick Ben Koetter via mailop wrote:
At the moment the SMTP server itself supports STARTTLS and DANE. We plan to
add MTA-STS when the feature becomes available.
Should it be using TLS for outbound connections? I'm not seeing that?
(no problem if that is something you
On 30/09/2020 09:59, Thomas Mechtersheimer via mailop wrote:
It does. Exim adds "s" to received_protocol for encrypted connections.
Check your exim log for the cipher that was used...
Oh, it is. My bad. I was just expecting to see the cipher in the header.
TLS1.3 - all good :)
Tim
_
On 30/09/2020 10:08, Peter N. M. Hansteen via mailop wrote:
Back in the day I suppose you could get a sort of working setup with
UDP-only DNS, but this has me wondering, is there a quasi-rational
historical reason for blocking 53/TCP? As in, was there at some point in
time a 'ping of death'-like
t per line, then but then line breaks are in
valid inside the json.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
+44 7966479015
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
google vouchers thinking they were on a special
mission for the big boss. £1300 lost, some maybe recovered.
If I stripped the name, they would have seen mablecri...@gmail.com and
hopefully noticed sooner.
Thoughts or ideas?
--
Tim Bray
Huddersfield, GB
___
rd)
You mean a bit like a second DKIM signature? Is that possible? Is
that useful? Mailinglists do this ? Could somebody who understands
this a bit better please say what they think ?
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
ma
don't
think any further DKIM checks will be done.
I'll DKIM check and then make the change before it drops into the mailbox.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
mebody will ask somebody
else to use their company card to buy something for them. These staff
too junior to have their own cards.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
https://www.hardenize.com/ - this one can test a zillion things on your
domain include DNSSEC, MTA-STS, DANE, DMARC. It incudes website stuff
in the tests. It is quite good fun getting a full set of greens.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
_
't rate the combo of DANE + DNSSEC + MTA-STS ?
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
On 16/12/2020 10:50, Thomas Walter via mailop wrote:
we switched over to rspamd quite a while ago and will not look back.
I switched on the back your suggestion. rspamd seems way better.
And switching on the dmarc module sends away the scammers.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
On 16/04/2021 13:44, micah via mailop wrote:
It seems to be a fun past-time for some people to mailbomb users (10k
emails in minutes), to blow up a person's mailbox so they are over
quota, or to make them miss an important email.
I'm curious what others have settled on for reasonable rate limit
On 21/04/2021 11:23, Neil Youngman via mailop wrote:
It doesn't behave exactly like a normal mail server, but it does retry
more than five times. Not all retries are from the same IP, but I have
observed that retries from the same IP don't get delivered.
Can you just deliver to a normal mails
egistered my account years ago.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
x27;t look at Spamhaus rejects, timestamps
are UTC):
Just check which DNS servers you are using. And lot of the 8.8.8.8
and 9.9.9.9 of the world and similar don't work very well for RBLs
I usually install a local unbound.
Sorry if that is too obvious, but has caught me out before
asn't) and deploying the automatic fix of 8.8.8.8 and not
telling anybody and mail stopped for 50% of messages.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
s after), so block away.
My main motivation for getting the blocking right is to avoid having
1000s of connections from scanners, and so real mail not getting through.
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.o
On 12/07/2021 12:00, Jaroslaw Rafa via mailop wrote:
They required SMTP AUTH for all messages
received on port 25 with the sender from their domain and rejected the
messages if the session was not authenticated. A crazy idea, but they did
exactly this.
I do this. For a corporate email system
On 19/07/2021 10:16, Thomas Walter via mailop wrote:
On 19.07.21 10:56, Tim Bray via mailop wrote:
I do this. For a corporate email system is makes a lot of sense. I
shouldn't be receiving email externally with a From: domain which is
local.
As long as your users don't have a
s.org/query/ip/2607:f8b0:4864:20::82d
confirms 'has been detected 1 times in the last month. It has been
removed 1 times.'
Any thoughts?
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://list.mail
ing
to hear from other usages.
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
--
Tim Bray
Huddersfield, GB
t...@kooky.org
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
e have at least 13 x /32
allocations. See https://bgp.he.net/AS63949#_prefixes6 They aren't
exactly short of address space. :) I'm sure linode could to go RIPE
and ask for more space too. (if Linode go past 52 billion customers,
giv
nybody has the same problem. A new problem that
started sometime since 2022-02-09 20:39:38 UTC. (our users don't send
much email over night in UK time.
Tim Bray
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
On 03/06/2022 11:13, Carlota Iglesias Martinez via mailop wrote:
I have managed to find that “Herustics” refers that they are coming
from a financial institution and ‘SpoofedDomain’ means that they
contain hyperlinks that are not known to be associated with the
organization and may be phishing
54 matches
Mail list logo