On 6/25/24 15:32, Dmitri Maziuk wrote:
On 6/25/24 12:51, Jim Dory wrote:
2. SMTP: Reverse DNS doesn't match SMTP Banner (The SMTP banner issued by your email server did not contain the
hostname we resolved for your server’s IP address.)
#2 - Reverse DNS - I have PTR records set for both compute.nkc.com (abbreviated) and nkc.com. So that could be a
problem?
DNS is Evil. A host should not have more than one PTR because if it does, it's not clear which PTR will be returned by
the nameserver. Ditto for A record, becasue teh one PTR can only match one of those -- but with something like unbound
that doesn't support CNAMEs, you won't have much choice. And if you do have CNAMEs, the client has to do extra work to
find the A and match it to the PTR -- if it cares.
I'm guessing they are flagging it because it *should* be playing nice and sending its A hostname that has a corresp.
(one) PTR record, in the SMTP banner.
Dima
Thanks Dima,
I think our records are a mess, and I don't quite feel qualified to fix it. This mailing list started sometime mid
2000's and has gone thru changes that have followed us without being cleaned. We used to host the website
nomekennelclub.com but they have since moved to a squarespace or somesuch server and we simply redirect to that page. I
assume they get their mail services through that host, but in our records we have A records for things like
webmail.nomekennelclub.com (nkc for short), mail.nkc.com, ftp.nkc.com, webdisk.nkc.com, whm.nkc.com, cpanel.nkc.com,
autoconfig, autodiscover, cpcalendars, nomekennelclub.com, server, compute.nomekennelclub.com (an actual one), plus
we have A records for I think nameservers ns1 and ns2 which I don't think are being used.. in the message headers I see
SE005.arandomserver.com and under mx lookups.
A couple of those A records, like cpanel may be used, not sure about the webmail one. I don't want to screw up the
kennelclub if they are using it. I'll have to check, but I would like to start deleting some. Like the server one, from
an older time.
As for PTR records, I'm still confused. We have 2, one for our new hostname: compute.nomekennelclub.com and for just the
domain nomekennelclub.com . When I look at a header from mailing list post, I see both.
Not sure what this all tells me, I've removed some of it for a bit of brevity:
Return-Path: <nome-announce-boun...@nomekennelclub.com>
Delivered-To: ja...@dorydesign.com
Received: from lax003.hawkhost.com
by lax003.hawkhost.com with LMTP
id YGXEJcpGfGYPMQAAva6gig
(envelope-from <nome-announce-boun...@nomekennelclub.com>)
for <ja...@dorydesign.com>; Wed, 26 Jun 2024 09:50:18 -0700
Return-path: <nome-announce-boun...@nomekennelclub.com>
Envelope-to: ja...@dorydesign.com
Delivery-date: Wed, 26 Jun 2024 09:50:18 -0700
Received: from se006.arandomserver.com ([198.252.99.2]:35800)
by lax003.hawkhost.com with esmtps (TLS1.2) tls
TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384
(Exim 4.96.2)
(envelope-from <nome-announce-boun...@nomekennelclub.com>)
id 1sMVqd-0005de-1Z
for ja...@dorydesign.com;
Wed, 26 Jun 2024 09:50:18 -0700
X-DKIM-Failure: bodyhash_mismatch
Received: from compute.nomekennelclub.com ([198.252.100.6])
by se006.arandomserver.com with esmtps
(TLSv1.3:TLS_AES_256_GCM_SHA384:256)
(Exim 4.92)
(envelope-from <nome-announce-boun...@nomekennelclub.com>)
id 1sMVqb-0004Dp-0l
for ja...@dorydesign.com; Wed, 26 Jun 2024 11:50:18 -0500
DKIM-Signature: v=1; a=rsa-sha256; q=dns/txt; c=relaxed/relaxed;
d=nomekennelclub.com; s=default; [etc]
Received: from [127.0.0.1] (port=33026 helo=compute.nomekennelclub.com)
by compute.nomekennelclub.com with esmtp (Exim 4.97.1)
(envelope-from <nome-announce-boun...@nomekennelclub.com>)
id 1sMVq9-00000000bK5-4A0o;
Wed, 26 Jun 2024 16:49:49 +0000
Received: from mail-pl1-f177.google.com ([209.85.214.177]:52372)
by compute.nomekennelclub.com with esmtps (TLS1.3) tls TLS_AES_128_GCM_SHA256
(Exim 4.97.1) (envelope-from <redac...@alaska.edu>)
id 1sMVpP-00000000bHi-0XWS for nome-annou...@nomekennelclub.com;
Wed, 26 Jun 2024 16:49:06 +0000
Received: by mail-pl1-f177.google.com with SMTP id
d9443c01a7336-1f6fabe9da3so56661465ad.0
for <nome-annou...@nomekennelclub.com>; Wed, 26 Jun 2024 09:48:42 -0700 (PDT)
To: nome-annou...@nomekennelclub.com
X-Spam-Status: No, score=-94.2
X-Spam-Score: -941
X-Spam-Bar: ---------------------------------------------------
X-Ham-Report: Spam detection software, running on the system
"compute.nomekennelclub.com",
has NOT identified this incoming email as spam. The original
message has been attached to this so you can view it or label
similar future email. If you have any questions, see
root\@localhost for details.
Content preview: Join us via ZOOM for the next presentation in our Strait
Science series… US COAST GUARD COMMAND CENTER: SAVING LIVES AT SEA
Content analysis details: (-94.2 points, 8.0 required)
pts rule name description
---- ---------------------- --------------------------------------------------
-0.0 USER_IN_WELCOMELIST User is listed in 'welcomelist_from'
-100 USER_IN_WHITELIST DEPRECATED: See USER_IN_WELCOMELIST
5.0 BAYES_99 BODY: Bayes spam probability is 99 to 100%
[score: 1.0000]
1.0 BAYES_999 BODY: Bayes spam probability is 99.9 to 100%
[score: 1.0000]
0.0 URIBL_DBL_BLOCKED_OPENDNS ADMINISTRATOR NOTICE: The query to
dbl.spamhaus.org was blocked due to usage
of an open resolver. See
https://www.spamhaus.org/returnc/pub/
[URIs: alaska.edu]
0.0 URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked. See
http://wiki.apache.org/spamassassin/DnsBlocklists#dnsbl-block
for more information.
[URIs: alaska.edu]
0.0 RCVD_IN_ZEN_BLOCKED_OPENDNS RBL: ADMINISTRATOR NOTICE: The query
to zen.spamhaus.org was blocked due to
usage of an open resolver. See
https://www.spamhaus.org/returnc/pub/
[209.85.214.177 listed in zen.spamhaus.org]
0.0 URIBL_ZEN_BLOCKED_OPENDNS ADMINISTRATOR NOTICE: The query to
zen.spamhaus.org was blocked due to usage
of an open resolver. See
https://www.spamhaus.org/returnc/pub/
[URIs: alaska.edu]
-0.0 SPF_PASS SPF: sender matches SPF record
0.0 HTML_MESSAGE BODY: HTML included in message
-0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from
author's domain
0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily
valid
-0.1 DKIM_VALID_EF Message has a valid DKIM or DK signature from
envelope-from domain
-0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
0.0 T_KAM_HTML_FONT_INVALID Test for Invalidly Named or Formatted
Colors in HTML
X-Spam-Flag: NO
Subject: [NA] =?utf-8?q?STRAIT_SCIENCE=3A_TOMORROW=2C_June_27_=E2=80=A2_6?=
=?utf-8?q?=3A30pm_=E2=80=A2_US_COAST_GUARD_COMMAND_CENTER=3A_SAVIN?=
=?utf-8?q?G_LIVES_AT_SEA?=
X-BeenThere: nome-annou...@nomekennelclub.com
X-Mailman-Version: 2.1.39
------------------------------------------------------
Mailman-Users mailing list -- mailman-users@python.org
To unsubscribe send an email to mailman-users-le...@python.org
https://mail.python.org/mailman3/lists/mailman-users.python.org/
Mailman FAQ: http://wiki.list.org/x/AgA3
Security Policy: http://wiki.list.org/x/QIA9
Searchable Archives: https://www.mail-archive.com/mailman-users@python.org/
https://mail.python.org/archives/list/mailman-users@python.org/
Member address: arch...@mail-archive.com