Re: ANNOUNCEMENT: The NEW invaluement "Service Provider DNSBLs" - 1st one for Sendgrid-spams!

2020-08-23 Thread Giovanni Bechis 
On 8/21/20 9:28 PM, Rob McEwen wrote:
> ANNOUNCEMENT: The NEW invaluement "Service Provider DNSBLs" - 1st one for 
> Sendgrid-spams!
> 
> ...a collection of a new TYPE of DNSBL, with the FIRST of these having a 
> focus on Sendgrid-sent spams. AND - there is a FREE version of this - that 
> can be used NOW! (/well... might need a SpamAssassin rule or two! Your help 
> appreciated!)/:
> 
SpamAssassin plugin available at:
https://github.com/bigio/spamassassin-esp/archive/esp-v0.1.tar.gz

We will work on improving this new type of DNSBL with more data and more 
features, stay tuned.

 Giovanni

> INFO AND INSTRUCTIONS HERE:
> 
> https://www.invaluement.com/serviceproviderdnsbl/
> 
> This provides a way to surgically block Sendgrid's WORST spammers, yet 
> without the massive collateral damage that would happen if blocking Sendgrid 
> domains and IP addresses. But we're NOT stopping at the phishes and viruses - 
> and we're not finished! There will be some well-deserved economic pain, that 
> puts the recipients' best interests at heart. Therefore, flagrant "cold 
> email" spamming to recipients who don't even know the sender - is also being 
> targeted - first with the absolute worst - and then progressing to other 
> offenders as we make adjustments in the coming weeks.
> 
> -- Rob McEwen https://www.invaluement.com
>

Re: SendGrid (Was: Re: Freshdesk (again))

2020-08-23 Thread Kevin A. McGrail 
Very disappointed with sendgrid's fall from grace.  Their
phishing/spam/malware and legit user mix is a nightmare.  Rob at
Invaluement is working on some tech to help that and I am helping him with
that.  You'll also find sendgrid rules in KAM.cf for this purpose too.

--
Kevin A. McGrail
Member, Apache Software Foundation
Chair Emeritus Apache SpamAssassin Project
https://www.linkedin.com/in/kmcgrail - 703.798.0171


On Mon, Aug 17, 2020 at 1:42 PM Philip Prindeville <
philipp_s...@redfish-solutions.com> wrote:

> I just add an extra 5.0 points for coming from Sendgrid now so it goes
> straight to the Junk folder.
>
> Users can pull it out of there if they really want it.
>
> Sendgrid is becoming to ASP’s what OVH and Softlayer are to ISP's.
>
>
> > On Jun 27, 2020, at 3:56 AM, Niels Kobschätzki 
> wrote:
> >
> > Sendgrid is such an origin for spam- and phishing-mails with certain
> terms that I added extra meta-rules. From sendgrid and somewhere in the
> body is the term “Amazon”? Here are your 10 points.
> >
> > Best,
> >
> > Niels
> >
> >> On 27. Jun 2020, at 11:32, Marc Roos  wrote:
> >>
> >> 
> >>
> >> I am going to make for companies like maildrop and sendgrid a hard
> block
> >> with reference to a page where someone can ask to be whitelisted with
> >> only an email address. In this procedure clearly stating the reason of
> >> the net block of these companies. If lots of sendgrid users are
> >> confronted with this, they will move to a better service.
> >> I can remember this fresh desk mail. I did not know where it came from.
> >> But now I know, I will complain a few million times.
> >>
> >>
> >>
> >>
> >> -Original Message-
> >> To: users@spamassassin.apache.org
> >> Subject: SendGrid (Was: Re: Freshdesk (again))
> >>
> >> Hello,
> >>
> >>> On Fri, Jun 26, 2020 at 07:32:09PM -0600, Grant Taylor wrote:
> >>> I've got to say, between NANOG, SDLU, and SpamAssassin, I see a LOT of
> >>
> >>> complaints about Sendgrid.
> >>
> >> Also mailop. Have personally received phishing mails through SendGrid
> in
> >> the last 2 weeks in the name of citrix.com, microsoft.com and
> >> netflix.com. The Citrix one was to a hostmaster@ address. It's hard to
> >> comprehend how SendGrid could be doing a worse job of this, for so many
> >> months now.
> >>
> >> Yet their list of legit clients is large, so they remain unblockable
> for
> >> me. I just wish those clients knew how little SendGrid would do to
> >> prevent their other customers sending out phishing emails in their name.
> >>
> >> Cheers,
> >> Andy
> >>
> >>
> >
>
>