e TLD is" problem
since it's not just the last segment.
Since the OP is new here, i will mention th Public Suffix list
https://publicsuffix.org/
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
works well for me
though maybe not for the OP with one user and 10 domains,
but I am paying less than his five bucks per month.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk___
mailop mailing list
mailop
?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
r possibly swaks on my machine).
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
DMARC)
I had not realized that SRS was possible without SPF.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
things can happen.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
the mail,
but cannot prove that it really came from the original sender.
I think that this way GMail can reject the email,
or put it in the spam folder, but without blaming you.
I am not sure that ARC is supposed to do what we think it is.
--
Andrew C. Aitchison Kendal, UK
AA record addresses ?
TonyFinch> Too late for that by about 10 years, I'm afraid.
Looks like that dream is getting further away :-(
We wont will that fight if we don't push for it.
On 25.04.24 14:59, Andrew C Aitchison via mailop wrote:
Should someone here not know, RFC 7505
A "Null MX&
ve them a
heads-up.
Kind regards,
Paul
PS: Of course, their software does not detect rejected messages/failed
deliveries, and their staff claims, it’s in the spam folder.
--
Andrew C. Aitchison
I'm stuck with the architecture for the next couple of years.
So you are looking for someone to add support for that architecture to
Proxmox, maybe in a consortium with other interested parties ?
[ I am *not* bidding, nor interested in joining the consortium. ]
--
Andrew C. Aitch
more about this software ?
Thanks,
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
operates in permanent queue running mode which
could lead to a retry every minute if the queue is nearly empty.
This is more or less "aggressive" ...
An *inbound* queue runner sounds like a special case
- I would expect it to be more "aggressive".
--
Andrew C. Aitchison
in security.
For IMAP and POP, encryption is end-to-end, but there you know, and
presumably have control over, your users.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop
such a device (although I was aware that people
would have to decide again about allowing plain).
Has anyone checked what traffic is still using TLS 1.0 or TLS 1.1 ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
is not new for openssl, but it is for gnutls.
Given that the advice for SMTP is often to allow tls 1.0 and 1.1,
rather than have it revert to unencrypted, this will is something to
watch out for.
--
Andrew C. Aitchison Kendal, UK
and...@aitch
several list messages last month
with mail addresses with what looked to me like CJK
characters.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https
they would like to do is to complain to any mail provider.
They just take it for granted that "it is so" that the recipient sometimes
doesn't get the email, and you have to live with it.
If nobody complains,
then a single complaint is likely to get attention :-)
--
I provide my opt-out preferences by ...
"visiting a single Internet Web page" ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
ve traffic from Alibaba so cannot judge for myself.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
put in clauses guaranteeing
no spam from addresses associated with with the customer's mail.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk___
mailop mailing list
mailop@mailop.org
https://list.mailop.org
-Lõks OÜ (reg. no. 12815457, VAT ID EE101811635)
Tallinn, Estonia
tel. +372-5883-4269, https://www.koliloks.eu/
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
--
Andrew C. Aitchison Kendal, UK
bare linefeeds, your bounce message may be
leading him astray by suggesting he has sent bare carriage-returns.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk___
mailop mailing list
mailop@mailop.org
https
domain additions to a safelist from the
hypothetical block rule, and that would be it.
- Mark Alley
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
On Sat, 13 Jan 2024, Benny Pedersen via mailop wrote:
Andrew C Aitchison via mailop skrev den 2024-01-13 07:16:
[ Wearing an MTA developer's hat. ]
+1
I see that an MTA is supposed to remove existing Authentication-Results and
BIMI-Indicator headers, and that generally an MUA may use
received a message with these headers there is a risk
that the MUA would trust them.
Would it help if MUAs that don't actively support BIMI at least removed
these headers when delivering to local mailboxes ?
--
Andrew C. Aitchison Kendal, UK
that far exceed those of the message itself.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
of the aims of BIMI is to encourage
correct use of SPF/DKIM/DMARC.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
it was particularly visible.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
to switch ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
.
If they use forwarders, SPF will fail in the case the envelope sender
isn't rewritten. Check your logs for that.
I think Jarland meant that his system allows users to forward
received messages (to Google).
--
Andrew C. Aitchison Kendal, UK
fewer messages I can only imagine
that is because their strike rate is better, which is *more* worrying.
What have I misunderstood ?
but I wouldn't be at all surprised if some sites still have a 90%+
spam burden.
--
Andrew C. Aitchison Kendal, UK
On Sat, 11 Nov 2023, Carsten Schiefner via mailop wrote:
Hi Andrew,
Am 11.11.2023 um 14:25 schrieb Andrew C Aitchison via mailop
:
[…]
I guess we need to look at ClientID
https://datatracker.ietf.org/doc/draft-storey-smtp-client-id/ (SMTP)
https://datatracker.ietf.org/doc/draft-yu-imap
r.ietf.org/doc/draft-storey-smtp-client-id/ (SMTP)
https://datatracker.ietf.org/doc/draft-yu-imap-client-id/ (IMAP)
and OAuthBearer RFC7628
to see whether either or both could help us identify the incoming
client sessions ?
--
Andrew C. Aitchison Kendal, UK
an
and fetchmail
to do to access Microsoft-hosted mailboxes ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
egorized as SPAM.
Maybe the spammers are more likely to use ed25529 than legitimate mailers
so GMail think it indicates spam ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@ma
and the forwarding information is stored
on the mailstore, he wont know whether the domain is local or remote
until the mail store comes back on line.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
check that the report domain is willing to accept these reports.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
On Sat, 30 Sep 2023, Carsten Schiefner via mailop wrote:
Hi Simon,
On 30.09.2023 10:18, Simon Arlott via mailop wrote:
On 30/09/2023 08:50, Andrew C Aitchison via mailop wrote:
I see that there is an Exim release candidate out on test at the moment
https://lists.exim.org/lurker/message
/2023/09/critical-vulnerabilities-in-exim-threaten-over-250k-email-servers-worldwide/?comments=1
gives a more plausible stat.
[ A quick grep suggests 12 other mailop threads this year have mentioned exim. ]
--
Andrew C. Aitchison Kendal, UK
On Sat, 30 Sep 2023, Andrew C Aitchison wrote:
On Sat, 30 Sep 2023, Jay R. Ashworth via mailop wrote:
I haven't even heard exim *mentioned* in like 20 years; these stats can't
be right, can they?
https://www.bleepingcomputer.com/news/security/millions-of-exim-mail-servers-exposed-to-zero
.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
:https://rdap.arin.net/registry/ip/38.152.0.0
... You may wish to check your rwhois data.
I have also seen "SWIP" mentioned in similar cases ...
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
ponse when tipping, then I am impressed.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
products get on with any particular virus
Use AV products by all means, but don't assume they will catch everything.
Do have plans for if/when you find something; both before and after it
causes harm.
--
Andrew C. Aitchison Kendal, UK
paper mail; why not email ?
Former staff don't have door keys.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
On Wed, 12 Jul 2023, ml+mailop--- via mailop wrote:
On Wed, Jul 12, 2023, Andrew C Aitchison via mailop wrote:
Please could you indicate who you are and,
Why?
Sorry, I meant to ask for a name or an alias.
Why ?
Because I don't believe that "the paranoid curmudgeon from esmtp.org&quo
are and,
if appropriate, who you work for or represent ?
Thanks,
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
that considering the MX when overriding the response code
would be a worthwhile addition to try, whether the machine learning
is AI-based or hard coded.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
ma
he "v" tag.
"v=DMARC1;p=none;sp=none;pct=10;rua=mailto:dmarc-mas...@eu.org;ruf=mailto:dmarc-mas...@eu.org;
Thanks,
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing lis
1A20 B9AA 87D4 84C7 FBD6 F3A9 9442 20CC 6CD2
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
--
Andrew C. Aitchison Kendal, UK
an
reports
so far this year.
dmarc.ruf reports are not common, but on a busy site there will be
enough to need to have a policy for them.
I hadn't heard of the SPF tags before Friday.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
by most SPF checking sites...
I asked one of the checker websites about that and recieved the reply:
RFC6652 is a proposed standard from 2012, but was replaced by DMARC in 2015.
DMARC reports on both SPF and DKIM.
Benoît, does the domain in question receive DMARC reports ?
--
Andrew C
to Google what Musk did to Twitter ...
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
any advantage
to put against the cost of an extra connection setup and closedown ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo
/rpr.html
(dated Sept 2004) which explains how SRS (without SPF)
is the answer to the problem SPF was supposed to solve !
[ I was actually looking for the theoretical slightly-open relay
issue which made me not enable SPF or SRS for a long time. ]
--
Andrew C. Aitchison Kendal
mount of emails we'll handle.
Many people use SPF failure (and DKIM, DMARC and ARC) to increase
spam-score, rather than an all-out block.
Do you have an actual measure of how much spam this is currently blocking ?
It *may* not be as bad as you think.
--
Andrew C. Aitchison
oss anyone.
Can you come up with a business model that encourages this ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
On Sat, 25 Mar 2023, Slavko via mailop wrote:
Dňa 25. marca 2023 17:11:48 UTC používateľ Andrew C Aitchison via mailop
napísal:
On Sat, 25 Mar 2023, Grant Taylor via mailop wrote:
I never understood different envelope senders for each attempt of a given
message. -- I can see different
submission time until delivery time.
I guess that having something to trace individual attempts
though the logs is useful if you are working at scale
and the typical user is more likely to report the sender address
than the message id ?
--
Andrew C. Aitchison Kendal, UK
,
but is this option technically available ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
every 2-3 months when they promote a new event.
I think you should try and send at least ~100 mails every day to keep an IP
warm. Otherwise you're a ghost...
So now you have to send spam to avoid being thought to be a spammer ?
--
Andrew C. Aitchison Kendal, UK
chine/user pairs
as long as an IMAP connection is using IDLE.
On Wed, 22 Feb 2023, Giovanni Bechis via mailop wrote:
this would not work for me, on my servers ~6% of imap logins are
from bots.
*Successful* IMAP logins ?
--
Andrew C. Aitchison
email account providers would filter their
outgoing mail too, there would be significantly less spam.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
On Sun, 8 Jan 2023, Andrew C Aitchison via mailop wrote:
On Sun, 7 Jan 2023, John Levine via mailop wrote:
But more to the point, why do you care? The number of phones these
days that can get SMS but not email rounds to zero, so if someone
wants to send you mail, they can send you mail
had a reputation for stronger security and
privacy than email. I don't know how much that reputation was
or is deserved.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop
On Sat, 6 Jan 2023, John Levine via mailop wrote:
If it's not worth 1c to get your messages out, perhaps this would be a
good time to reconsider why exactly you're sending them in the first
place.
If only we could say that to spammers.
--
Andrew C. Aitchison Kendal, UK
to unsubscribe just by clicking "Confirm" or something like this
on the page you get to via the link - as many legitimate newsletters already
do.
Hmm. This list has two unsubscribe links (https: and mailto:)
but neither is personalised.
--
Andrew C. Aitchison
of my wife's practiced alternative medicine for many years before
starting a PhD in that area.
If VT PhD students don't have the experience needed in the topics they study,
then shouldn't VT change either the students or the topics ?
--
Andrew C. Aitchison Kendal, UK
s anyone have access to proofpoint urldefence.com and similar
to see what they do ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
of this public
list.
The content of that regex might need to be expanded to include
other reverse domains they use.
Thanks to Florian Obser for pointing out the errors in my
first run at this.
--lyndon
Thanks,
--
Andrew C. Aitchison Kendal, UK
an
we believe the recipient will not be able to reply
to T-Online senders.
But of course, sending a clear and accurate reject or bounce message
to T-Online is no guarantee that it will reach the sender.
--
Andrew C. Aitchison Kendal, UK
and...@aitch
lem and they have an incentive
to a) get google to accept mail from o365 and b) keep the flow
from o365 to gmail clean enough the Google don't block you again.
I don't need your answers to the above questions.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me
default = spam.
If you send 100 messages and one is marked "not spam", your score becomes
spam/not-spam 0/1 -> not-spam.
Plausible ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
__
.
(Exim, as shipped by the Exim team, appears to use OpenDMARC
but not OpenDKIM).
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo
as I can see Exchange does some calendaring which only works with Outlook
and which has always looked like the tail wagging the dog from my perspective
(why would I change my entire mail system to use a calendaring system ?).
--
Andrew C. Aitchison Kendal, UK
oken would confirm that the message sent and the message
received are the same, but I don't see what would be gained by
attaching the token to a new message - using the URL directly would be
a more efficient way of triggering the denial of service attack *on the
original message*.
--
Andrew C.
of their completed form.
If this bounces, then you ask them to correct the address.
Of course, if they give *someone-elses* email (whether by accident or
deliberately) you have just mailed personal data to a third party ...
--
Andrew C. Aitchison
@ not personal data in GDPR terms,
in principle would you be happy to do that ?
Coincidentally, I have just been helping someone enable
SMTP VRFY in exim. I suppose that you do use VRFY
when it is availble ?
--
Andrew C. Aitchison Kendal, UK
they won't re-enable tokenless authentication
and the provide no help at all to get tools back online which do not
work any more.
I wonder: How do other Microsoft Office365 customers mitigate this
situation?
--
Andrew C. Aitchison
is that v1.2 might share those flaws
even if v1.3 does not).
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
ant.
IIUC the "No STARTTLS" people have found that, when connecting a TLS
library to application code, allowing connections to be upgraded from
clear to encrypted produces many more bugs than just requiring the
connection to be secure from the start.
--
Andrew C. Aitchison
on my side… their choices were just a tad dusty…
Long ago I has a support ticket from a user visiting a four letter
national security centre complaining that he could not ssh to our department.
Translated, the error message we were giving was "your codes are too old".
That made
lly.
Yes, but anyone providing email services for large companies may have to
keep an eye open.
For example those parameters mean that Boeing, or anyone filtering email
for Boeing has to engage with the bill, but Barracuda doesn't have
to except when acting for particularly large companies.
-
? RFC6532 limits lines to 998 octets.
There is a view that this is out of date and many mail senders do not stick
to this limit, but equally some receiving systems attempt to enforce it.
998 octets is a MUST; there is also a 78 character SHOULD limit.
--
Andrew C. Aitchison Kendal, UK
, there is at least one legitimate reasons to allow this:
how else could a customer change ESP ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org
' tab, just like the 'Promotions' tab.
Wouldn't that be labelling, which would mean they need explict
permission before enabling it for each user ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
On Mon, 4 Jul 2022, Edwardo Garcia via mailop wrote:
Halo,
What are we using this days in replace opendkim which is long broken
abandonware?
For anyone using Exim, there is builtin support (in and out)
which does not use opendkim.
--
Andrew C. Aitchison Kendal, UK
.
AND no record.
Otherwise, if there is no MX record but there is A record, mail will be
delivered to the mailserver A record points to. Of course assuming that
there is a mailserver on that machine that listens on port 25...
--
Andrew C. Aitchison Kendal, UK
at "proposed") documented using pref=0,
zero-length label '.' and describes some performance benefits.
I see that example.com uses this.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop ma
Ls (or the domains of URLs) from manually marked spam.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
, but that means they have no paying customers to prioritize.
They are part of Cisco.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https
password.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
ready to send the first message
of the session.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
.
And Brandon just said (IIUC) that GMail POP collection doesn't (yet)
support OAUTH2, so one of the sensible ways of making them different
is not available. If your organisation has single sign on that may
mean that google has access to your file server :-(
--
Andrew C. Aitchison
is an instant
messaging system :-(
Agreed.
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
would hope that the forwarder would get some credit for making
the details of the previous hop sufficiently reliable to score.
If so, then it is useful to ARC-sign a message when forwarding, even
when we have no data upon which to evalate incoming ARC signatures.
--
Andrew C. Aitchison
On Fri, 29 Apr 2022, Jaroslaw Rafa via mailop wrote:
Dnia 29.04.2022 o godz. 12:08:13 Andrew C Aitchison via mailop pisze:
You wouldn't want to give anybody - be it Google or anybody else - login
credentials to your email account, would you?
In many organisations it is worse than
only valid for popping mail, without
adding an extra password and confusing everyone.
Not to mention the risks of letting "Google" see possibly
confidential emails.
--
Andrew C. Aitchison Kendal, UK
an
1 - 100 of 217 matches
Mail list logo
