[mailop] Forging Feedback-Id and weird GPT FBL data
Hi, Since few days we are seeing weird FBL data in Google Postmaster Tools: spikes of FBLs with identifiers that could not be real and must be forged. No "strange" IPs outside our network and no authentication / delivery errors either. The Feedback-id header is not oversigned. I would exclude a classic "DKIM Replay" attack of sorts because when it happens we usually see auth/delivery errors and because the attacker does not really need to change the Fedback-Id with bogus info as well. Is anyone experiencing the same? Those big red bars in GPT really annoy me also because it's harder to spot real issues in this way. Alberto ___ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
Re: [mailop] Calling out Mailjet and diginico.com
Hello, On Wed, May 25, 2022 at 03:25:45PM -0600, Anne Mitchell via mailop wrote: > does anyone here even accept email from [MailJet] any more? > Anybody see legitimate email coming through Mailjet It's been pretty bad so we're scoring anything from AS200069 and AS396479 +3.4 in SpamAssassin since 2017. In December 2020 we had to outright reject such mails when sent to our own role addresses as we were even seeing mailshot spam from MailJet to support@, hostmaster@ etc. Since then the only exception we have had to make was for mail from inmomentfeedback.com which is allowlisted by DKIM at present. Cheers, Andy -- https://bitfolk.com/ -- No-nonsense VPS hosting ___ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
Re: [mailop] How "more secure" is actually less secure (regarding Gmail)
On 2022-05-31 at 05:26:46 UTC-0400 (Tue, 31 May 2022 11:26:46 +0200) Alessandro Vesely via mailop is rumored to have said: On Mon 30/May/2022 17:26:56 +0200 Bill Cole via mailop wrote: On the contrary, when I use password auth in my IMAP client I never, ever store the password in the app. Yes, you do. Maybe it's just in memory for some indeterminate period covering one IMAP session (unlikely). Maybe it's persistent, kept unencrypted by the app. Maybe it is onkly persisted because of a password manager that the app can use as needed. A honest app doesn't persistently store a password without user's permission. Yes, but I was not limiting my discussion to 'honest' apps. People use Microsoft email software, after all... It is also worth noting that 'persistent' is a squishy term in that in the modern world we often leave MUAs open for indeterminately long periods, during which they 'remember' whatever passwords they've been told. My MUA stores encrypted passwords after I set a master password, which I must type every time the MUA starts, which is about weekly. Right: a password manager. Some MUAs have their own, others can use system-wide facilities like Apple's Keychain or add-on password managers like LastPass or 1Password. On the laptop, however, I don't store encrypted passwords, because brute force attacks become feasible if the laptop is stolen. Modern password managers typically are even resistant to (non-quantum) 'brute force' attacks. PBKDF2 is very good, if implemented well. That's a tradeoff, in any case. If I catch a key logger, stored password are safer that typed ones. If one 'catches' a key logger, one should presume that everything on the machine is compromised, not just the recent keystrokes. -- Bill Cole b...@scconsult.com or billc...@apache.org (AKA @grumpybozo and many *@billmail.scconsult.com addresses) Not Currently Available For Hire ___ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
Re: [mailop] How "more secure" is actually less secure (regarding Gmail)
On Mon 30/May/2022 17:26:56 +0200 Bill Cole via mailop wrote: On the contrary, when I use password auth in my IMAP client I never, ever store the password in the app. Yes, you do. Maybe it's just in memory for some indeterminate period covering one IMAP session (unlikely). Maybe it's persistent, kept unencrypted by the app. Maybe it is onkly persisted because of a password manager that the app can use as needed. A honest app doesn't persistently store a password without user's permission. My MUA stores encrypted passwords after I set a master password, which I must type every time the MUA starts, which is about weekly. On the laptop, however, I don't store encrypted passwords, because brute force attacks become feasible if the laptop is stolen. That's a tradeoff, in any case. If I catch a key logger, stored password are safer that typed ones. Best Ale -- ___ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
Re: [mailop] Contact at Contabo?
Ok, I'll wait a bit. Initial mail was on Sunday, so a response on Monday would be pretty quick, but not something one should depend on :-) Am 31. Mai 2022 08:57:01 schrieb Carsten Schiefner via mailop : Morning, Hans-Martin - On 31.05.2022 07:26, Hans-Martin Mosner via mailop wrote: does anybody have a working contact at Contabo? Mail to abuse@ does not seem to have an effect. last time I have been in touch with them as their customer, it took them four working days to get back to me, although on a mere and totally non-urgent FYI message. Inbound was , outbound however was . Best, -C. ___ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop ___ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
