[mailop] Seeking Advice on Bellsouth and SBC Global

[Brett Schenker]

This is the situation I'm running in to. We had an IP range for years with
little issues since I took over. We warmed up the new IP range over six
months, things were going well. Around the end of the year SBC and
Bellsouth started blocking the entire range, except two IPs (always two,
never more, never less). Other than moving over the same clients that were
on the old IP range (so an increased volume) nothing is changed.

Does anyone know what SBC/Bellsouth judges their blocks by? Don't want keys
to the kingdom, just some things to ponder so that we can fix things on our
end going forward. When I've asked, they've sent a list mostly focused on
securing networks (which isn't an issue), but when I ask for more info I'm
not getting much help.

There's no issues with ATT, just Bellsouth/SBC (and some other small IPs
connected to them).

Anyone have an insight as to what they judge spam by so I can squash the
issue at the source?

This is the IP range, 192.82.209.0/24

-- 
Brett Schenker
Man of Many Things, Including
5B Consulting - http://www.5bconsulting.com
Graphic Policy - http://www.graphicpolicy.com

Twitter - http://twitter.com/bhschenker
LinkedIn - http://www.linkedin.com/in/brettschenker
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop

Re: [mailop] Still seeing Microsoft 5.4.0 issues?

[Michael Wise]

It’s a known issue, but the fix hit some snags.
Confirmed that if you see exactly this error (“5.4.0”, no secondary code, no 
reason text) that treating it as a 4xx is ok.

The devs are working as quickly as they can to get the fix deployed.
Sorry for the inconvenience.

Aloha,
Michael.
--
Michael J Wise | Microsoft | Spam Analysis | "Your Spam Specimen Has Been 
Processed." | Got the Junk Mail Reporting 
Tool ?

From: mailop [mailto:mailop-boun...@mailop.org] On Behalf Of Luke Martinez via 
mailop
Sent: Wednesday, March 30, 2016 2:05 PM
To: Joel Beckham 
Cc: Josh Nason ; mailop 
Subject: Re: [mailop] Still seeing Microsoft 5.4.0 issues?

We are still seeing some.

On Wed, Mar 30, 2016 at 2:53 PM, Joel Beckham 
> wrote:
Not seeing any here.

On Wed, Mar 30, 2016 at 7:01 AM, Josh Nason 
> wrote:
Hi all -- we continue to see Action: failed/Status: 5.4.0 bounces for emails 
sent to Hotmail, Outlook, and Microsoft domains. I assume others are seeing the 
same?

Microsoft friends, any idea on a resolution time? This feels like it's taking a 
while to be resolved.

--

[Image removed by sender. Dyn logo, 
Dyn.com]
[Image removed by sender.] 



 [Image removed by sender. Dyn facebook account] 



 [Image removed by sender. Dyn LinkedIn account] 


Josh Nason / Email Reputation Manager
[Image removed by sender.] +1 603-289-1244 | 
@JoshNason

Email is hot! This is 
why
 it's the original form of social media.

___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop



--
JOEL BECKHAM

Scalability Architect


[Image removed by sender. BombBomb | Face to Face with more people, more often]

W: 
BombBomb.com

[Image removed by sender. BombBomb | Face to Face with more people, more often]




___
mailop mailing list
mailop@mailop.org

Re: [mailop] Still seeing Microsoft 5.4.0 issues?

[Maarten Oelering]

Below are the sources with counts of “5.4.0" remote bounces for today.

COL004-OMC4S16.hotmail.com (65.55.34.218),101
COL004-OMC4S9.hotmail.com (65.55.34.211),98
COL004-OMC4S7.hotmail.com (65.55.34.209),92
COL004-OMC4S11.hotmail.com (65.55.34.213),82
COL004-OMC4S17.hotmail.com (65.55.34.219),79
COL004-OMC4S13.hotmail.com (65.55.34.215),72
COL004-OMC4S18.hotmail.com (65.55.34.220),68
COL004-OMC4S3.hotmail.com (65.55.34.205),64
COL004-OMC4S5.hotmail.com (65.55.34.207),63
COL004-OMC4S1.hotmail.com (65.55.34.203),61
COL004-OMC4S8.hotmail.com (65.55.34.210),59
COL004-OMC4S12.hotmail.com (65.55.34.214),58
COL004-OMC4S10.hotmail.com (65.55.34.212),57
COL004-OMC4S14.hotmail.com (65.55.34.216),55
COL004-OMC4S4.hotmail.com (65.55.34.206),50
COL004-OMC4S6.hotmail.com (65.55.34.208),48
COL004-OMC4S2.hotmail.com (65.55.34.204),45
COL004-OMC4S15.hotmail.com (65.55.34.217),41

Thanks,

Maarten Oelering
Postmastery

> On 31 mrt. 2016, at 22:04, Michael Wise  wrote:
> 
> If you could enumerate the XXs for us, just for today, that would help a lot, 
> we suspect it's some sort of internal DNS timeout.
> 
> Aloha,
> Michael.
> -- 
> Sent from my Windows Phone
> From: Maarten Oelering 
> Sent: ‎3/‎31/‎2016 1:01 PM
> To: Michael Wise 
> Cc: Josh Nason ; mailop 
> Subject: Re: [mailop] Still seeing Microsoft 5.4.0 issues?
> 
> I just queried some data at google scale and found bounces with “5.4.0” 
> (nothing more). These are all remote (asynchronous) bounces. 
> The source of the bounce is COL004-OMC4SXX.hotmail.com 
> 
>  where XX varies. The recipient domain is mostly hotmail.com 
> ,
>  but also other Microsoft domains.
> The number varies per day but is a tiny fraction of the volume. Highest 
> numbers of these bounces on 03/11, 03/14, 03/23, and today. But they have 
> been there at least since 01/01 (and probably before).
> 
> Maybe this can help to clear it up.
> 
> Maarten Oelering
> Postmastery
> 
>> On 30 mrt. 2016, at 23:04, Michael Wise > > wrote:
>> 
>> Is the, “5.4.0 “ the entire bounce code / response? <>
>> If there’s more, we need to know to build a case.
>> If that’s it, that should be enough, but we need to know which it is.
>>  
>> Aloha,
>> Michael.
>> --
>> Michael J Wise | Microsoft | Spam Analysis | "Your Spam Specimen Has Been 
>> Processed." | Got the Junk Mail Reporting Tool 
>> 
>>  ?
>>  
>> From: mailop [mailto:mailop-boun...@mailop.org 
>> ] On Behalf Of Joel Beckham
>> Sent: Wednesday, March 30, 2016 1:53 PM
>> To: Josh Nason >
>> Cc: mailop >
>> Subject: Re: [mailop] Still seeing Microsoft 5.4.0 issues?
>>  
>> Not seeing any here. 
>>  
>> On Wed, Mar 30, 2016 at 7:01 AM, Josh Nason > > wrote:
>> Hi all -- we continue to see Action: failed/Status: 5.4.0 bounces for emails 
>> sent to Hotmail, Outlook, and Microsoft domains. I assume others are seeing 
>> the same?
>>  
>> Microsoft friends, any idea on a resolution time? This feels like it's 
>> taking a while to be resolved.
>>  
>> -- 
>> <~WRD000.jpg> 
>> 
>> <~WRD000.jpg> 
>> 
>>     
>> <~WRD000.jpg>
>>  
>> 

Re: [mailop] Still seeing Microsoft 5.4.0 issues?

[Maarten Oelering]

I just queried some data at google scale and found bounces with “5.4.0” 
(nothing more). These are all remote (asynchronous) bounces. 
The source of the bounce is COL004-OMC4SXX.hotmail.com 
 where XX varies. The recipient domain is 
mostly hotmail.com , but also other Microsoft domains.
The number varies per day but is a tiny fraction of the volume. Highest numbers 
of these bounces on 03/11, 03/14, 03/23, and today. But they have been there at 
least since 01/01 (and probably before).

Maybe this can help to clear it up.

Maarten Oelering
Postmastery

> On 30 mrt. 2016, at 23:04, Michael Wise  wrote:
> 
> Is the, “5.4.0 “ the entire bounce code / response? <>
> If there’s more, we need to know to build a case.
> If that’s it, that should be enough, but we need to know which it is.
>  
> Aloha,
> Michael.
> --
> Michael J Wise | Microsoft | Spam Analysis | "Your Spam Specimen Has Been 
> Processed." | Got the Junk Mail Reporting Tool 
>  ?
>  
> From: mailop [mailto:mailop-boun...@mailop.org 
> ] On Behalf Of Joel Beckham
> Sent: Wednesday, March 30, 2016 1:53 PM
> To: Josh Nason >
> Cc: mailop >
> Subject: Re: [mailop] Still seeing Microsoft 5.4.0 issues?
>  
> Not seeing any here. 
>  
> On Wed, Mar 30, 2016 at 7:01 AM, Josh Nason  > wrote:
> Hi all -- we continue to see Action: failed/Status: 5.4.0 bounces for emails 
> sent to Hotmail, Outlook, and Microsoft domains. I assume others are seeing 
> the same?
>  
> Microsoft friends, any idea on a resolution time? This feels like it's taking 
> a while to be resolved.
>  
> -- 
> <~WRD000.jpg> 
> 
> <~WRD000.jpg> 
> 
>     
> <~WRD000.jpg>
>  
> 
>     
> <~WRD000.jpg>
>  
> 
> Josh Nason / Email Reputation Manager  
> <~WRD000.jpg> +1 603-289-1244  | @JoshNason 
> 
> Email is hot! This is why 
> 
>  it's the original form of social media.
> 
> 
> ___
> mailop mailing list
> mailop@mailop.org 
> https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop 
> 
> 
> 
>  
> -- 
> JOEL BECKHAM
> Scalability Architect
> 
> W: BombBomb.com 
> 

Re: [mailop] Gmail red open padlock composing message

[Franck Martin via mailop]

I wanted to add, make sure you have compatible ciphers, you may have
enabled STARTTLS but if you cannot negotiate a cypher, then the point is
moot ;)

A packet capture when STARTTLS is initiated will tell you what ciphers are
offered and which one is negotiated.

On Thu, Mar 31, 2016 at 12:03 PM, Franck Martin 
wrote:

> I guess, once they have positive data on your domain, they should update
> the icon:
> https://www.google.com/transparencyreport/saferemail/#search=eastlink.ca
>
> On Thu, Mar 31, 2016 at 9:38 AM, Kirk MacDonald <
> kirk.macdon...@corp.eastlink.ca> wrote:
>
>> With thanks to Google for pushing the cause, I implemented STARTTLS
>> functionality on my org’s MX (as well as outbound SMTP with opportunistic
>> STARTTLS).
>>
>>
>>
>> Does anyone have any insight into how long it might take Gmail to
>> acknowledge the STARTTLS availability when composing a new message to a
>> domain at my org, and consequently not show the red unlocked padlock in the
>> compose message UI?
>>
>>
>>
>> I am assuming that for “known” domains Gmail caches results for STARTTLS
>> availability, rather than testing each time a message is composed. The TTL
>> in DNS for the MX record of the domain(s) has long since passed. My own
>> personal testing seems to indicate I didn’t do anything terribly stupid
>> when implementing STARTTLS at the MX.
>>
>>
>>
>>
>>
>> *Kirk MacDonald System Administrator*
>> Internet
>> Eastlink
>>
>>
>>
>> ___
>> mailop mailing list
>> mailop@mailop.org
>> https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
>>
>>
>
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop

Re: [mailop] Gmail red open padlock composing message

[Franck Martin via mailop]

I guess, once they have positive data on your domain, they should update
the icon:
https://www.google.com/transparencyreport/saferemail/#search=eastlink.ca

On Thu, Mar 31, 2016 at 9:38 AM, Kirk MacDonald <
kirk.macdon...@corp.eastlink.ca> wrote:

> With thanks to Google for pushing the cause, I implemented STARTTLS
> functionality on my org’s MX (as well as outbound SMTP with opportunistic
> STARTTLS).
>
>
>
> Does anyone have any insight into how long it might take Gmail to
> acknowledge the STARTTLS availability when composing a new message to a
> domain at my org, and consequently not show the red unlocked padlock in the
> compose message UI?
>
>
>
> I am assuming that for “known” domains Gmail caches results for STARTTLS
> availability, rather than testing each time a message is composed. The TTL
> in DNS for the MX record of the domain(s) has long since passed. My own
> personal testing seems to indicate I didn’t do anything terribly stupid
> when implementing STARTTLS at the MX.
>
>
>
>
>
> *Kirk MacDonald System Administrator*
> Internet
> Eastlink
>
>
>
> ___
> mailop mailing list
> mailop@mailop.org
> https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
>
>
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop

Re: [mailop] Mail accepted by outlook.com/hotmail.com disappears.

[Bill Campbell]

On Wed, Mar 30, 2016, Michael Rathbun wrote:
...
>An elephant superficially resembles a mouse.  There are enormous structural
>differences.

An elephant is a mil-spec mouse.

Bill
-- 
INTERNET:   b...@celestial.com  Bill Campbell; Celestial Software LLC
URL: http://www.celestial.com/  PO Box 820; 6641 E. Mercer Way
Voice:  (206) 236-1676  Mercer Island, WA 98040-0820
Fax:(206) 232-9186  Skype: jwccsllc (206) 855-5792

But how is this legal plunder to be identified? Quite simply. See if the
law takes from some persons what belongs to them, and gives it to other
persons to whom it does not belong. See if the law benefits one citizen at
the expense of another by doing what the citizen himself cannot do without
committing a crime. -- Frederic Bastiat, The Law

___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop

[mailop] Gmail red open padlock composing message

[Kirk MacDonald]

With thanks to Google for pushing the cause, I implemented STARTTLS 
functionality on my org’s MX (as well as outbound SMTP with opportunistic 
STARTTLS).

Does anyone have any insight into how long it might take Gmail to acknowledge 
the STARTTLS availability when composing a new message to a domain at my org, 
and consequently not show the red unlocked padlock in the compose message UI?

I am assuming that for “known” domains Gmail caches results for STARTTLS 
availability, rather than testing each time a message is composed. The TTL in 
DNS for the MX record of the domain(s) has long since passed. My own personal 
testing seems to indicate I didn’t do anything terribly stupid when 
implementing STARTTLS at the MX.


Kirk MacDonald
System Administrator
Internet
Eastlink


___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop

Re: [mailop] Paging a chilli.nosignal.org admin: Expired Cert (was: Re: Mail accepted by outlook.com/hotmail.com disappears.)

[Al Iverson]

No worries, and thank you kindly for your effort in providing this
resource for us all.

Cheers,
Al Iverson

--
Al Iverson
www.aliverson.com
(312)725-0130


On Thu, Mar 31, 2016 at 9:22 AM, Andy Davidson  wrote:
>
> Hi, all !
>
>
>
>
>
> On 31/03/2016, 13:31, "mailop on behalf of Adam McGreggor" 
>  a...@amyl.org.uk> wrote:
>
>>On Wed, Mar 30, 2016 at 08:01:07PM -0500, Al Iverson wrote:
>>> I emailed the list owners back on 3/20 about this as well...no response. :\
>>> Hope somebody didn't die.
>>
>>I've seen one of the listadmins post on another list recently.
>
> Sorry about that.  I’ve been using the (rather excellent) Letsencrypt system 
> to make short lived SSL certificates on the host this list lives on.  I’ve 
> had a few auto rollovers done by script work but it seemed to break this 
> time.  The problem is some kind of memory exhaustion issue.  Fine, I can get 
> the VM provider to increase the memory - but the VM has disappeared from my 
> management portal their side.  You know how these things always spiral...  I 
> need to get some time to sit in realtime with a support person there, fix the 
> underlying resource issue, then get LE working again, then the cert will 
> generate.  I will try to get some time to do that tomorrow.
>
> Apologies again,
> Andy
> Tame listadmin.

___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop

Re: [mailop] Paging a chilli.nosignal.org admin: Expired Cert (was: Re: Mail accepted by outlook.com/hotmail.com disappears.)

[Andy Davidson]

Hi, all !





On 31/03/2016, 13:31, "mailop on behalf of Adam McGreggor" 
 wrote:

>On Wed, Mar 30, 2016 at 08:01:07PM -0500, Al Iverson wrote:
>> I emailed the list owners back on 3/20 about this as well...no response. :\
>> Hope somebody didn't die.
>
>I've seen one of the listadmins post on another list recently.

Sorry about that.  I’ve been using the (rather excellent) Letsencrypt system to 
make short lived SSL certificates on the host this list lives on.  I’ve had a 
few auto rollovers done by script work but it seemed to break this time.  The 
problem is some kind of memory exhaustion issue.  Fine, I can get the VM 
provider to increase the memory - but the VM has disappeared from my management 
portal their side.  You know how these things always spiral...  I need to get 
some time to sit in realtime with a support person there, fix the underlying 
resource issue, then get LE working again, then the cert will generate.  I will 
try to get some time to do that tomorrow.

Apologies again,
Andy 
Tame listadmin.
___
mailop mailing list
mailop@mailop.org
https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop

Re: [mailop] Still seeing Microsoft 5.4.0 issues?

[Josh Nason]

Hey Michael -- that's all we're seeing:

Final-Recipient: rfc822;...@hotmail.com
Action: failed
Status: 5.4.0

On Wed, Mar 30, 2016 at 5:04 PM, Michael Wise 
wrote:

> Is the, “5.4.0 “ the entire bounce code / response?
>
> If there’s more, we need to know to build a case.
>
> If that’s it, that should be enough, but we need to know which it is.
>
>
>
> Aloha,
>
> Michael.
>
> --
>
> *Michael J Wise* | Microsoft | Spam Analysis | "Your Spam Specimen Has
> Been Processed." | Got the Junk Mail Reporting Tool
>  ?
>
>
>
> *From:* mailop [mailto:mailop-boun...@mailop.org] *On Behalf Of *Joel
> Beckham
> *Sent:* Wednesday, March 30, 2016 1:53 PM
> *To:* Josh Nason 
> *Cc:* mailop 
> *Subject:* Re: [mailop] Still seeing Microsoft 5.4.0 issues?
>
>
>
> [image: Image removed by sender.]Not seeing any here.
>
>
>
> On Wed, Mar 30, 2016 at 7:01 AM, Josh Nason  wrote:
>
> Hi all -- we continue to see Action: failed/Status: 5.4.0 bounces for
> emails sent to Hotmail, Outlook, and Microsoft domains. I assume others are
> seeing the same?
>
>
>
> Microsoft friends, any idea on a resolution time? This feels like it's
> taking a while to be resolved.
>
>
>
> --
>
> [image: Image removed by sender. Dyn logo, Dyn.com]
> 
>   [image: Image removed by sender.]
> 
>
> [image:
> Image removed by sender. Dyn facebook account]
> 
>
> [image:
> Image removed by sender. Dyn LinkedIn account]
> 
>
> Josh Nason / Email Reputation Manager
> [image: Image removed by sender.] +1 603-289-1244 <%2B1%20603-289-1244> |
> @JoshNason
> 
>
> Email is hot! This is why
> 
> it's the original form of social media.
>
>
> ___
> mailop mailing list
> mailop@mailop.org
> https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop
> 
>
>
>
>
>
> --
>
> *JOEL BECKHAM*
>
> Scalability Architect
>
> [image: Image removed by sender. BombBomb | Face to Face with more people,
> more often]
>
> W: BombBomb.com
> 
>
> [image: Image removed by sender. BombBomb | Face to Face with more people,
> more often]
>
>
>



-- 

[image: Dyn logo, Dyn.com] 
[image: Dyn facebook
account]