Our own Zimbra email systems are hosted on AWS and we have migrated a number of other Zimbra Partners' and customers' systems to AWS over the years with good success.
My experience in reporting abusive behavior from other AWS tenants has been generally good. I've sent them email headers and log snippets and I usually get back a "We've taken care of it." email, after which the abusive behavior appears no more. I can recall only one issue that was not so easy: a not-legitimate "email verification" service that was also sending scam emails took some back and forth with AWS to get resolved. AWS claimed that email verification activities did not violate the Computer Fraud and Abuse Act (CFAA), although I provided an attorney's letter that opined our systems were indeed "protected computers" under the Act. Fortunately, we found one of their scam emails coming from one of their AWS EIPs, and that was enough then for AWS to take action. Hope that helps! Regards, Mark -- _________________________________________________________________ L. Mark Stone, Founder North America's Leading Zimbra VAR/BSP/Training Partner For Companies With Mission-Critical Email Needs Winner of the Zimbra Americas VAR Partner of the Year - Two Years Running ! ----- Original Message ----- | From: "Niels Dettenbach via mailop" <[email protected]> | To: "Ethgen Klaus" <[email protected]> | Cc: [email protected] | Sent: Monday, December 29, 2025 6:35:11 AM | Subject: Re: [mailop] Amazon AWS a save haven for phisher? |> Am 29.12.25 um 09:38 schrieb Klaus Ethgen via mailop <[email protected]>: |> |> I end currently with blocking AWS (AS16509) completely! There is nothing |> there I want to have on my server(s). | | We downrated this source significantly in our systems, because most of smtp from | there is crap / spam, but blocking completely was no option, because a lot of | companies and even some public entities use that space for „legite“ (user | expected) email - i.e. web-applications, 2FA stuff etc.. | | But yes, the amount of crap let me wonder how still so many entities use that | for their business email functionality. | |> |> That does not help with phishing but it keep them from fetching your web |> page. | We put brakes on their web traffic toward our webservers, because lot of | crawling traffic is abusive from our view - i.e. not respecting robots.txt or | similiar. | | hth, | | niels. | — | Niels Dettenbach | https://www.syndicat.com | https://www.syndicat.com/pub_key.asc | _______________________________________________ | mailop mailing list | [email protected] | https://list.mailop.org/listinfo/mailop _______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
