Re: [Mailman-Users] how to avoid the anit-spoofing error
At 12:15 AM -0700 2004-06-14, Weijun Zhu wrote: But it seems that this company recently implemented anti-spoofing on emails and subsribers from that company are no longer able to receive any emails sent to the list by people from the same company. Here is the log message I got. (reason: 550 Error: Anti-spoofing - From header field in inbound eMail cannot be local domain) Is there a way to configure the list server so that this problem can be avoided? No idea. Why don't you ask the people who implemented the anti-spoofing technology on your mail servers? They would know what they did, and what methods might be able to be used as a legitimate work-around. -- Brad Knowles, [EMAIL PROTECTED] They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety. -Benjamin Franklin, Historical Review of Pennsylvania. SAGE member since 1995. See http://www.sage.org/ for more info. -- Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Re: [Mailman-Users] how to avoid the anit-spoofing error
On 14 Jun 2004, at 08:15, Weijun Zhu wrote: Hello, I am running a list where a few subcribers are from a company. The list server is outside the company. Everything works great! But it seems that this company recently implemented anti-spoofing on emails and subsribers from that company are no longer able to receive any emails sent to the list by people from the same company. Here is the log message I got. (reason: 550 Error: Anti-spoofing - From header field in inbound eMail cannot be local domain) Is there a way to configure the list server so that this problem can be avoided? This doesn't sound like a very smart test but ... 1. setting the anonymous_list attribute on your list's General Options page may work but with has other consquences. 2. setting those troubled subscribers to be Digest members might also sidestep the problem, with fewer side effects for people not affected by this problem than the anonymous_list option. Thanks a lot! Weijun. -- Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Re: [Mailman-Users] how to avoid the anit-spoofing error
At 7:56 AM -0700 2004-06-14, Mark Sapiro wrote: (reason: 550 Error: Anti-spoofing - From header field in inbound eMail cannot be local domain) [ ... deletia ... ] Have you tried setting USE_ENVELOPE_SENDER = No in mm_cfg.py? That's on the mailing list server side. If I understand correctly, the problem is that the mailing list server is sending out e-mail that claims to be from within the domain, which is being rejected by the mail server. This is a classic case of mis-configuration of the mail server, and is not a problem that is likely to be able to be resolved by the external mailing list server. -- Brad Knowles, [EMAIL PROTECTED] They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety. -Benjamin Franklin, Historical Review of Pennsylvania. SAGE member since 1995. See http://www.sage.org/ for more info. -- Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Re: [Mailman-Users] how to avoid the anit-spoofing error
Brad Knowles wrote: At 7:56 AM -0700 2004-06-14, Mark Sapiro wrote: (reason: 550 Error: Anti-spoofing - From header field in inbound eMail cannot be local domain) [ ... deletia ... ] Have you tried setting USE_ENVELOPE_SENDER = No in mm_cfg.py? That's on the mailing list server side. If I understand correctly, the problem is that the mailing list server is sending out e-mail that claims to be from within the domain, which is being rejected by the mail server. I'm sure your understanding is correct. I read the original post a little too quickly. -- Mark Sapiro [EMAIL PROTECTED] The highway is for gamblers, San Francisco Bay Area, Californiabetter use your sense - B. Dylan -- Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Re: [Mailman-Users] how to avoid the anit-spoofing error
On 14 Jun 2004, at 17:19, Brad Knowles wrote: At 7:56 AM -0700 2004-06-14, Mark Sapiro wrote: (reason: 550 Error: Anti-spoofing - From header field in inbound eMail cannot be local domain) [ ... deletia ... ] Have you tried setting USE_ENVELOPE_SENDER = No in mm_cfg.py? That's on the mailing list server side. If I understand correctly, the problem is that the mailing list server is sending out e-mail that claims to be from within the domain, which is being rejected by the mail server. This is a classic case of mis-configuration of the mail server, and is not a problem that is likely to be able to be resolved by the external mailing list server. Note that the misconfigured server is the one issuing the 550 error. Your list server is working the way mailing lists are supposed to work. The email really IS from the person that it says its from. Ask the company to fix this. Otherwise their staff won't be able to get copies of their own (or each others) posts from most lists. Its easy to fix, if they have a decent mail server. Simply add a header (Eg X-company: yes, where company is the company name) to the outgoing mail server, and permit spoofing when that header is present. Look at my headers for an example. That's a fairly simple thing to do, and no spammer is going to go to the trouble of working out how to circumvent this in a hurry. If the trick catches on, then maybe they will. In that case, you need to do something more clever, like giving the header an MD5 hash of the sender address and the date and time that the mail was sent (extracted from a header, of course) and some secret password. Probably not worth trying to work that out at the moment, though. -- Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/ -- Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Re: [Mailman-Users] how to avoid the anit-spoofing error
At 10:28 PM +0100 2004-06-14, Ian A B Eiloart wrote: Note that the misconfigured server is the one issuing the 550 error. Your list server is working the way mailing lists are supposed to work. The email really IS from the person that it says its from. Ask the company to fix this. Otherwise their staff won't be able to get copies of their own (or each others) posts from most lists. Indeed. I suspect that the company may have implemented SPF (see http://bradknowles.typepad.com/). In this case, one easy solution would be for the company to designate the mailing list server as one of the systems that is officially allowed to generate e-mail that claims to be from the company. -- Brad Knowles, [EMAIL PROTECTED] They that can give up essential liberty to obtain a little temporary safety deserve neither liberty nor safety. -Benjamin Franklin, Historical Review of Pennsylvania. SAGE member since 1995. See http://www.sage.org/ for more info. -- Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
Re: [Mailman-Users] how to avoid the anit-spoofing error
Thanks everyone for clarifying the problem. I will forward the suggestions that you guys give to the company. Brad Knowles wrote: At 10:28 PM +0100 2004-06-14, Ian A B Eiloart wrote: Note that the misconfigured server is the one issuing the 550 error. Your list server is working the way mailing lists are supposed to work. The email really IS from the person that it says its from. Ask the company to fix this. Otherwise their staff won't be able to get copies of their own (or each others) posts from most lists. Indeed. I suspect that the company may have implemented SPF (see http://bradknowles.typepad.com/). In this case, one easy solution would be for the company to designate the mailing list server as one of the systems that is officially allowed to generate e-mail that claims to be from the company. -- Mailman-Users mailing list [EMAIL PROTECTED] http://mail.python.org/mailman/listinfo/mailman-users Mailman FAQ: http://www.python.org/cgi-bin/faqw-mm.py Searchable Archives: http://www.mail-archive.com/mailman-users%40python.org/
