Re: [mailop] Phishing hosted by Cloudflare-ipfs.com / Abuse Handled by Sparkpostmail.com?

IPFS is a p2p file storage, so cloudflare doesn't control what content is put there, they don't even know who put it there, so it's a natural extension of their "we're not responsible, it's our customer's responsibility, but we won't tell you who that customer is" policy. I chose to reject all

Re: [mailop] [spamhaus] de-listing requests successful, but only for a couple of days.

Am 17.03.24 um 14:05 schrieb Jaroslaw Rafa via mailop: Dnia 17.03.2024 o godz. 08:30:39 Hans-Martin Mosner via mailop pisze: does IPv6 (not exclusively though), and I've been trying to usher in the future by setting up at least dual stack on my home DSL connection (that at least works now after

Re: [mailop] [spamhaus] de-listing requests successful, but only for a couple of days.

Am 17.03.24 um 04:23 schrieb Jarland Donnell via mailop: I'm gonna be "that guy" though for a minute. If there are any IPv6 only mail servers, they are hobbyists trying to prove a point. There are a ton of IPv4 only mail servers. In short, there is no benefit to sending mail over IPv6 beyond

Re: [mailop] [spamhaus] de-listing requests successful, but only for a couple of days.

Am 15.03.24 um 09:11 schrieb Alexandre Dangreau via mailop: Hello, In fact, if you need a /64 IPv6 range you probably use the wrong service. For VPS and Public Cloud instances (PCI) the IPv6 range is shared with all the VM, so each VM (VPS or PCI) have one single IPv4 (/32) and one single

Re: [mailop] Filter out emoji from email adresses

Am 04.03.24 um 22:40 schrieb Sebastian Nielsen via mailop: Anyone that have a general algoritm to filter out emoji from sender addresses? It's possible that the problem isn't specific to emojis but to any unicode code point in the supplementary planes (code point values above U+).

Re: [mailop] One click unsubscribe in mailing list messages

Am 25.02.24 um 04:10 schrieb Philip Paeps via mailop: It's actually encouraging to see the web-MUAs driving improvement in this space.  Parsing List-Unsubscribe: to present a button feels like a very obvious thing to do.  It's surprising how few traditional MUAs have ever done that. Yes. I'm

Re: [mailop] One click unsubscribe in mailing list messages

Am 24.02.24 um 00:12 schrieb Mark Fletcher via mailop: On Fri, Feb 23, 2024 at 3:09 PM Jay Hennigan via mailop wrote: There are many systems that scan links in email and falsely unsubscribe. I'd make it two-click. When clicked, have it go to a page that says: You are about to

Re: [mailop] Outgoing Spam from Microsoft IPs

Am 16.02.24 um 03:37 schrieb Matt Palmer via mailop: Although I must say that without reverse DNS would seem to be the easier blocking option -- when was the last time you saw legitimate mail from an IP without rDNS? - Matt We do that, with some exceptions, as we indeed get some legitimate

[mailop] Outgoing Spam from Microsoft IPs

We've been seeing runs of spam mails from Microsoft IP addresses without reverse DNS (possibly cloud servers). One is sending with addresses , starting on February 8. The other (same or different spammer?) uses and started just yesterday. Have others seen these? Is there some way to

Re: [mailop] problem setting up open-dmarc

Am 09.02.24 um 16:20 schrieb Gellner, Oliver via mailop: A not really serious reply: I'm interested to learn how I can get amused by looking at XML data, this would greatly improve my professional life. Until now I have been more in the state of wanting to jump out the window when I see DMARC

Re: [mailop] Ooops - sorry

Am 02.02.24 um 04:03 schrieb Lou Katz via mailop: Wound up way back in my archive and responded to an old, dead issue. If only the issue were as dead as it is old... SPF is a PITA that stays. :-) Hans-Martin ___ mailop mailing list

Re: [mailop] Extortion spam from OVH-hosted *.sbs domains

Am 26.01.24 um 09:42 schrieb Simon Bressier via mailop: Hi all, FYI Hans-Martin, I reached out to ovh team yesterday night to push your message, seems your abuse report has been processed by the proper team. No idea if they answered you, but at least, they have handled the report, and probably

Re: [mailop] Extortion spam from OVH-hosted *.sbs domains

Am 26.01.24 um 09:42 schrieb Simon Bressier via mailop: Hi all, FYI Hans-Martin, I reached out to ovh team yesterday night to push your message, seems your abuse report has been processed by the proper team. No idea if they answered you, but at least, they have handled the report, and

[mailop] Extortion spam from OVH-hosted *.sbs domains

Tonight we received a huge wave of extortion spams from OVH hosted domains trying to get bitcoin payments. The senders claim that recipients watched child porn. This is the final straw for me to add a rule to reject all mail traffic from OVH until the sender is whitelisted. OVH is completely

Re: [mailop] Anyone else noticing an increase in spam from Office365 distribution lists?

Am 17.01.24 um 15:35 schrieb Hans-Martin Mosner via mailop: Am 17.01.24 um 15:20 schrieb Paul Menzel via mailop: With this in mind, did somebody compile a block list yet? Or should I just create a whitelist? A block list does not make sense, as new domains are added continuously. It's just

Re: [mailop] Anyone else noticing an increase in spam from Office365 distribution lists?

Am 17.01.24 um 15:20 schrieb Paul Menzel via mailop: With this in mind, did somebody compile a block list yet? Or should I just create a whitelist? A block list does not make sense, as new domains are added continuously. It's just too simple. I've had good experience with a whitelist, but

Re: [mailop] Samsung and SIZE

Am 15.01.24 um 07:54 schrieb Sebastian Nielsen via mailop: That header is supposed to be attached by the originating MUA, and I don't *think* transit MTAs are permitted to rewrite it... Problem is, that when MUA or first MTA has a incorrect date set, the email comes like last in inbox...

Re: [mailop] Incoming spam from outlook.com

Am 15.12.23 um 14:49 schrieb L. Mark Stone via mailop: We too are seeing high volumes of such email. Historically, we have avoided deploying greylisting*, but are curious if greylisting would block these emails? Could anyone who is doing greylisting comment on whether these garbage emails

Re: [mailop] salesforce phishing emails

Am 28.11.23 um 11:54 schrieb Mary via mailop: Dear salesforce, Please stop your clients from sending Facebook phishing emails. I've been asking them something like that by way of abuse reports since end of September, to no avail. They don't seem to care. Sadly, they host legitimate

Re: [mailop] Success MiTM attack

Am 22.10.23 um 12:23 schrieb Paul Menzel via mailop: It was interesting and surprising to me, as the common perception is, that SSL certificates protect against MiTM attacks as it should provide authenticity. The weak point of SSL certificates is that clients are willing to accept new certs

Re: [mailop] belgacom.be / skynet.be - massing phishing

Am 13.10.23 um 18:30 schrieb Mary via mailop: Hello everyone, Anyone from belgacom.be notice massive amounts of phishing with/from skynet.be addresses? I've tried to report them without success. Posted on spamcop.net in case anyone would notice, again without success. No, they don't

[mailop] Noticeable increase of spam emanating from Colocrossing?

Hi, does anybody else see a noticeable increase of spam from Colocrossing hosted IPs? I don't have hard data but my gut feeling is that the number of attempts have increased by a significant amount during the few weeks. Cheers, Hans-Martin ___

Re: [mailop] spamhaus false positive ?

Am 19.08.23 um 10:43 schrieb Pascal HOARAU via mailop: Hello, Since this night (French time) a lot of companies are blacklisted by spamhaus, mostly transactional IPs. Do you have the same issue and any info ? Regards, Pascal The spamhaus rejections that I see look all justified. Maybe

Re: [mailop] Guide for setting up a mail server ?

Has anyone on this list tried forwarding (e.g. for ex-employees) via attachment? The original message would be kept intact, while the outer message clearly originates with the forwarding agent who may even add a human readable reminder to the addressee to let the sender know about the changed

[mailop] SPF +all considered harmful

Most likely none of you would consider adding +all to an SPF record a smart move, here's another reason why you shouldn't do it: Google cloud services are being used to spam (ongoing for a long time, Google doesn't seem to care). What I noticed today is that the spammer is using domains with

Re: [mailop] SendGrid is deleting your mail

Am 22.06.23 um 06:52 schrieb Matt Harris via mailop: On Wed, Jun 21, 2023 at 6:11 PM Sebastian Nielsen via mailop wrote: >>The RFC forbids doing that, and I argued against it The RFC and reality is two different things. If a client don't want to retry, I think they are free to

Re: [mailop] Strange mail delivery from microsoft

Am 19.06.23 um 06:36 schrieb Klaus Ethgen via mailop: I have some update.. Greylisting was not the problem I had/have with microsoft. Your original mail sounded a little different. However, upon re-reading it is possible that you activated greylisting in response to the previous perceived

Re: [mailop] Strange mail delivery from microsoft

Am 18.06.23 um 18:53 schrieb Klaus Ethgen via mailop: Hi, I have tighten my firewall a bit and seen many attacks from Microsoft (40.92.0.0/16). Attacks or mail delivery attempts? They contact once from a IP and then never again. If I greylist them, the will try to deliver from a different

Re: [mailop] Port 25 Pingback?

Am 16.06.23 um 20:02 schrieb Benny Pedersen via mailop: Mike Hillyer via mailop skrev den 2023-06-16 19:48: Sources or hosts? I don’t expect a given host to answer on port 25 just because it sends, but the domain in the return path should be accepting mail properly. If they can’t be bothered

Re: [mailop] Port 25 Pingback?

Am 16.06.23 um 19:37 schrieb John Possidente via mailop: A sender of legally mandated bulk mail who are very conscious of making sure they're dotting every i and crossing every t (because they're required to) asked me today whether port 25 pingback is still necessary. I immediately thought, "Of

Re: [mailop] Transparency is key... Here is a perfect example.. M3AAWG is coming.. time to take a st

Am 31.05.23 um 01:18 schrieb Sebastian Nielsen via mailop: I don't agree with your stance. Hiding whois details doesn't mean you hiding your identity. Normally, this type of privacy is also used when you want to hide the actual person that is responsible for, lets say paying the domains.

[mailop] Someone from nifty.com / sion.ne.jp an this list?

There's been an ongoing phishing wave originating from nifty.com. I (and most likely others) have sent abuse reports, but the root of the problem apparently hasn't been found and fixed. Would you please see that this phishing stops? If you contact me off-list, I will provide you with the

Re: [mailop] Microsoft Office365 not rejecting emails when instructed so by SPF recored?

Am 25.05.23 um 07:33 schrieb Slavko via mailop: I am confused now as in RFC 7505 sect. 4.2 one can read: Null MX is primarily intended for domains that do not send or receive any mail... And: ...mail systems SHOULD NOT publish a null MX record for domains that they use in

Re: [mailop] SMTP disconnect… (Was: Hosteurope contact?)

Am 07.05.23 um 00:12 schrieb Thomas Walter via mailop: Turns out mx-out-02:~$ nc mx0.webpack.hosteurope.de 25 220 mx0.webpack.hosteurope.de ESMTP (mi005.mc1.hosteurope.de) (even more power) Sun, 07 May 2023 00:03:13 +0200 ehlo mx-out-02.fh-muenster.de 550-REJECT: 212.201.120.206 is in

Re: [mailop] Yahoo: SOA record per subdomain required?!

Am 06.05.23 um 18:44 schrieb Christian Seitz via mailop: Hello, ... I already tried to contact Yahoo before sending this email to the list and they acknowledged the issue "You are correct, we are indeed looking for an SOA for each individual subdomain if you're going to use it in the SMTP

Re: [mailop] ab...@microsoft.com => Mailbox full

Am 20.04.23 um 21:25 schrieb Jarland Donnell via mailop: The age old problem: Hire a bunch of people to read it that aren't skilled enough to do anything about it, or hire people who are skilled to handle it but don't have the time or manpower to read it all. There's a third option: Handle

Re: [mailop] linodeusercontent.com/googleusercontent.com, I'm so done with you

Am 08.04.23 um 06:17 schrieb Jarland Donnell via mailop: To be clear they have an amazing abuse team, easily the first people I would hit up if I were hiring in that area. Just top notch admins. If they are top notch but have their hands tied they are essentially worthless to me. They could just

Re: [mailop] linodeusercontent.com/googleusercontent.com, I'm so done with you

Am 04.04.23 um 23:02 schrieb Brandon Long via mailop: Google Cloud, which I assume is what googleusercontent.com is from this, is only unblocked for smtp for supposedly good customers... though I think they are allowed to connect to the Workspace relays (but then

[mailop] linodeusercontent.com/googleusercontent.com, I'm so done with you

Those two cloud providers are currently providing 99% of the incoming spam at one site. googleusercontent.com sends a never-ending flood of DHL phishing mails. linodeusercontent.com sends unsolicited ad crap using a domain "klwinkel.app". Time for large scale IP range blocking, I really can't

Re: [mailop] sender domain reputation

Am 28.03.23 um 14:19 schrieb John Levine via mailop: It appears that Dan Malm via mailop said: And then we have freenom, still giving away .tk, .ml, .ga, .cf and .gq domains for free... I don't block those TLDs, but they spew out enough spam that they go directly to the spam folder. Not any

Re: [mailop] How to address Microsoft if spaming Office365 customers cause collateral damage for other Office365 customers sharing the same IP?

Am 30.03.23 um 18:11 schrieb Francois Petillon via mailop: On 3/30/23 16:37, Benoit Panizzon via mailop wrote: Unfortunately, this massively affects other Office365 customers. But they complaint because we (operating the SWINOG blacklist) block them, they don't complaint to Microsoft for being

[mailop] Sendgrid abuse forwarding to Google - not one of your brightest ideas

I tried to report a phishing spam to Sendgrid, and look what I got: - The following addresses had permanent fatal errors - (reason: 552-5.7.0 This message was blocked because its content presents a potential) - Transcript of session follows - ... while talking to

[mailop] Human contact at Proximus/Belgacom?

Hello, abuse reporting to Proximus/Belgacom is made as inconvenient as possible by * Not accepting e-mail reports (automatic reply points to abuse submission form) * Telephone number as required field on the submission form (I absolutely don't want to be contacted by phone regarding

Re: [mailop] SPF and DMARC Passed Phishing Spam from Oracle.com

Am 23.02.23 um 05:30 schrieb Peter Beckman via mailop: It seems that if you are able to get a server in oraclecloud.com, you can send SPF- and DMARC-passing spam to be sent by Oracle.com, which includes a phishing URL attempt. Actually, sending SPF- and DMARC-passing spam is possible from

Re: [mailop] How to get Google to set a null MX for gmail.co ?

Am 16.02.23 um 17:57 schrieb Tom Perrine via mailop: The subject says it all. We’ve got users (who doesn’t?) who fat-finger gmail.com to gmail.co – apparently A LOT. The domain gmail.co seems to be an anti-squat domain, and on HTTP it throws a 404 – as expected. (Although they could have

Re: [mailop] Hetzner

Am 08.02.23 um 02:44 schrieb Michael Peddemors via mailop: On 2023-02-07 14:00, Hans-Martin Mosner via mailop wrote: Another thing is that it should go absolutely without question that as the hoster will not divulge the identity of their customers to abuse reporters, Okay, going to start

Re: [mailop] Hetzner

Am 07.02.23 um 13:31 schrieb Ralph Seichter via mailop: When a third party X complains that Hetzner customer Y is a spammer, I consider it only appropriate that Hetzner passes the complaint along and asks Y for a statement, and does not simply impose restrictions on Y based on X's say-so.

Re: [mailop] Anyone know about this list washing organization from yesterday?

Am 08.12.22 um 17:25 schrieb Michael Peddemors via mailop: The IP(s) are geo-located as Romania, but the IPs are registered to Dutch and UK companies.. All the domains are tossing a cloudflare unknown error.. Digital Virtualisation Solutions London, 5.157.216.0/22 GMG Amsterdam

Re: [mailop] off-topic? useless Subject tags

Am 27.11.22 um 17:19 schrieb ml+mailop--- via mailop: Hmm, so something "tagged" the previous mail as [Marketing Email] Subject: Re: [mailop] [Marketing Email] t-online.de Seems to be really bogus to me IMHO it would be nice if those (misleading) "tags" could be removed before replying,

Re: [mailop] Partial issues forwarding mails to gmail.com

Am 24.11.22 um 17:20 schrieb Martin Flygenring via mailop: ... [Google says] Our system has detected an unusual rate of unsolicited mail originating from your IP address. ... Now, the interesting part is that for almost 98% of the mails currently in queue, Google is the original sender of the

Re: [mailop] Massive bounce report campaign

24. November 2022 08:48, "Cyril - ImprovMX via mailop" mailto:mailop@mailop.org?to=%22Cyril%20-%20ImprovMX%20via%20mailop%22%20)> schrieb: I'd love to be able to drop them, but the situation is made in a way that we can not do anything: That user configured their bounce domain to pass

Re: [mailop] Things to do on a Sunday, when there is an atmospheric river.. Investigate 'code200 UAB'

They are validating addresses using incomplete SMTP dialogs. Either nullroute or block at the MAIL FROM stage, so they don't even get to check whether RCPT TO would be accepted. Cheers, Hans-Martin Am 30. Oktober 2022 23:23:51 schrieb Michael Peddemors via mailop : Can anyone give insight

Re: [mailop] How do I break Gmail forwarding?

"multiple people" - 3..5, or 60..100? If it's not too many who could have done it, ask them, have them fess up, and let the one who did it repair it. Otherwise, blocking the gmail address on mail ingress is probably the simplest solution. Cheers, Hans-Martin Am 24. Oktober 2022 15:16:30

Re: [mailop] T-Online is now really blocking messages from non-commercial and simliar senders

Am 19.10.22 um 13:33 schrieb Heiko Schlittermann via mailop: 554 IP=168.119.159.241 - A problem occurred. … The sending IP belongs to a rented host (rented from a major German hoster). @mailops: What's your opinion? I consider this unacceptable (at least when they don't offer a

Re: [mailop] Massive Spam Incident @ Outlook.com?

Am 10.10.22 um 15:25 schrieb Benoît Panizzon via mailop: Hi Team Anyone else observing an absurd increase of 'erotica' related spam mails, most probably sent over phished Outlook.com accounts over the last couple of days? On the account most affected by this, the wave seems to have stopped

Re: [mailop] Threat Update.. Tales from the Trenches..

Am 05.10.22 um 19:13 schrieb Michael Peddemors via mailop: PS, don't know what o365 is doing, but a marked reduction in uncaught spam leaking from their networks.. Really? I'm seeing a constant stream of fake dating spam from apparently compromised O365 accounts, with no end in sight.

Re: [mailop] Gmail as well as Google Worskapce refuse all email from my domain

Am 02.10.22 um 13:56 schrieb Arek Patyk via mailop: what is strange i have on this microsoft tenant another domain with .digital suffix - and all mails from this domain are delivered to gmail without any problems. That might be an indication that the .pl TLD is at least part of the problem.

Re: [mailop] Gmail as well as Google Worskapce refuse all email from my domain

Am 02.10.22 um 12:44 schrieb Arek Patyk via mailop: We have had MFA authentication on all accounts for years and we checked all logs from email activity from last month. Compromising an account is almost impossible. I must be something else. It's not about you, it's about other Office365

Re: [mailop] Gmail as well as Google Worskapce refuse all email from my domain

There probably wasn't suspicious activity from your domain, but there has been a significant wave of fake dating spam sent via presumably compromised Office365 accounts. I've noticed such waves a number of times in the past, but haven't been able to get information about the root cause for such

Re: [mailop] Microsoft 365 send spam via high-risk delivery pool (instead of block it)

Am 29.09.22 um 08:19 schrieb Alessio Cecchi via mailop: I think it is not a correct behavior, if you can identify a message as unwanted why do you have to send it anyway? Often such identification isn't 100% certain (in fact, no spam/ham distinction can ever be 100% correct). Of course, if

Re: [mailop] mta4.de

Am 16.09.22 um 15:24 schrieb ask--- via mailop: JFYI. new spam player from azure IP space calling themself "mta4.de" sending lottery spam. first appearing in our logs yesterday. currently not yet listed at spamhaus. Saw them too today. They were temp rejected because that's how we treat

Re: [mailop] The oligopoly has won.

Am 13.09.22 um 07:57 schrieb Eduardo Diaz Comellas via mailop: I agree with the general sense that GMail is misbehaving at spam management, both incoming and outgoing processing is flawed (in my opinion). I will just talk from the gmail's customer side: a customer of mine moved to gmail.

Re: [mailop] The oligopoly has won.

Am 12.09.22 um 22:29 schrieb Grant Taylor via mailop: On 9/12/22 2:01 PM, Slavko via mailop wrote: Thus it was not self-hosted, only (semi) self-managed ;-) I don't agree. If you use that mentality, nobody, not even Google, self hosts as they get their facilities -> connectivity -> domain

Re: [mailop] does outbound.protection.outlook.com ignore 550 for RCPT?

I'd guess that myprasarana.onmicrosoft.com is compromised (or has compromised accounts). I've seen this name before, reported the spam, and put it on our reject list. Don't know whether Microsoft failed to forward the spam report, or the tenant's admins are simply incompetent. Cheers,

Re: [mailop] SMTP noise from *.bouncer.cloud

Am 04.09.22 um 21:49 schrieb Radek Kaczynski via mailop: > Those few domains with small traffic are: > - bringmesomejuice.com > - iusedtolikeit.com > - sometimeinthepast.com > - mybigfluffyfriend.com

Re: [mailop] State of the Union - Update due to activity..

Am 30.08.22 um 22:49 schrieb Michael Peddemors via mailop: On 2022-08-30 13:33, Hans-Martin Mosner via mailop wrote: I just checked a few samples, really can't be bothered to do it for all of them. NameCheap (registrar-servers.com) DNS all over the place (in fact didn't find one that had

Re: [mailop] State of the Union - Update due to activity..

I just checked a few samples, really can't be bothered to do it for all of them. NameCheap (registrar-servers.com) DNS all over the place (in fact didn't find one that had another registrar). It's gotten so bad that I refuse all traffic from domains with such DNS unless they are explicitly

Re: [mailop] unknown domain in MAIL (outlook.com)

In my experience, most of outlook.com emitted spam mails are from compromised accounts, very often at educational institutions who may be allocating student accounts en masse with standard passwords (just guessing). I report them, but as most large mail providers, they don't seem to reply with

Re: [mailop] Disabling TLS 1.0 and 1.1 for MTA to MTA communication

My main question would be: what do you hope to gain? There are some legit senders who still use non-encrypted mail. And as long as we don't want to take on the tedious task of educating those senders or convincing our users that they don't want to get mail from those senders, we need to allow

Re: [mailop] So, Sendgrid / Zoom, planning on actually doing anything about webinar spams?

23. Juli 2022 00:54, "Atro Tossavainen via mailop" schrieb: > Er, I think you mean > > https://msbl.org/ebl.html Yeah, basically that, except that i'm thinking of a somewhat wider scope by also covering compromised mailboxes, which gets closer to the PII danger zone as those woould belong to

Re: [mailop] So, Sendgrid / Zoom, planning on actually doing anything about webinar spams?

22. Juli 2022 22:20, "Luis E. Muñoz via mailop" schrieb: > Going back to the example of an ESP, does the hash of the email address > equate the email address as > per GDPR? This probably reaches well into the area of legal expertise and may therefore be off-topic here, but it would be very

Re: [mailop] So, Sendgrid / Zoom, planning on actually doing anything about webinar spams?

Am 22. Juli 2022 11:34:16 schrieb Laura Atkins via mailop : ESPs have many, many problems, but the fixes being suggested here on mailop are overly simplistic and evidence a lack of conceptual understanding of how bulk email is sent in 2022. Suggested technical fixes are certainly too

Re: [mailop] Request for contact details of the postmasters of freenet.de

Am 05.07.22 um 14:45 schrieb Klaus Tachtler via mailop: Hi, I would look for contact information for the postmasters at freenet.de, as we have a problem with bulk email delivery to that provider. Unfortunately, we have not yet received any response to the contact form on the freenet.de

Re: [mailop] Someone from freenet.de on this list?

Am 25.05.22 um 07:59 schrieb Hans-Martin Mosner via mailop: Please contact me off-list. Your "rate-limiting" handling of non-SPF mail isn't rate-limiting but blocking legitimate traffic. Cheers, Hans-Martin So it's been a month since that problem raised its head, and after se

Re: [mailop] OVH contact required - 54.38.34.203 - vps-28239cc9.vps.ovh.net

Am 20.06.22 um 20:25 schrieb Hans-Martin Mosner via mailop: Am 20.06.22 um 07:35 schrieb Hans-Martin Mosner via mailop: I've reported a list of a few dozen IPs at OVH that are clearly used by one snowshoe spammer to Pierre-Edouard and to abuse@OVH, but to no effect. Today I see an effect

Re: [mailop] OVH contact required - 54.38.34.203 - vps-28239cc9.vps.ovh.net

Am 20.06.22 um 07:35 schrieb Hans-Martin Mosner via mailop: I've reported a list of a few dozen IPs at OVH that are clearly used by one snowshoe spammer to Pierre-Edouard and to abuse@OVH, but to no effect. Today I see an effect, very nice. All of those (including the ones that I didn't report

Re: [mailop] OVH contact required - 54.38.34.203 - vps-28239cc9.vps.ovh.net

Am 15.06.22 um 10:40 schrieb Pierre-Edouard Caron via mailop: I’m not aware about their process but I know that they wait multiples reports before to block. They are improving the pipeline to give more notifications that the report have been handle. I've reported a list of a few dozen IPs at

Re: [mailop] freenet anybody?

Am 09.06.22 um 12:17 schrieb Heiko Schlittermann via mailop: Hi, I'm seeking a responsible person for freenet.de. We're running into their ratelimits and need more information, in order to track this issue on our side. Best regards from Dresden/Germany Viele Grüße aus Dresden

[mailop] Leaseweb

Hi, it's probably no surprise to anybody, but Leaseweb is a confirmed spammer haven. I gave it a last try today, reporting a number of IP addresses which are apparently operated by just one spammer. Positive results: * Leaseweb accepts e-mail complaints to the abuse address listed in their

Re: [mailop] Fwd: *** SPAM *** Sparkpost sending spam on behalf of \"Time Travel Promotion LP\"

Am 21.05.22 um 18:46 schrieb Kent McGovern via mailop: I sent this directly to Hans-Martin, wanted to share it with the list as well. Kent McGovern Sr.Deliverability Strategist Sparkpost -- Forwarded message - From: *Kent McGovern* Date: Sat, May 21, 2022 at 10:26 AM Subject:

Re: [mailop] Contact at Contabo?

Ok, I'll wait a bit. Initial mail was on Sunday, so a response on Monday would be pretty quick, but not something one should depend on :-) Am 31. Mai 2022 08:57:01 schrieb Carsten Schiefner via mailop : Morning, Hans-Martin - On 31.05.2022 07:26, Hans-Martin Mosner via mailop wrote: does

[mailop] Contact at Contabo?

Hello, does anybody have a working contact at Contabo? Mail to abuse@ does not seem to have an effect. Cheers, Hans-Martin ___ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop

Re: [mailop] *LIKELY SPAM 27.9* Re: Any reason to NOT block the entire .cam domain?

Am 27.05.22 um 21:38 schrieb Michael Rathbun via mailop: Here are the domains this gang has used in the last seven days: If you look up the MX records for these domains, you see a certain clustering around one provider. The IP addresses that I checked don't accept port 25 connections at this

Re: [mailop] Forum/Blog spam turned up to 11

Oops, I didn't read your post to the end, with invalid target addresses it's likely a different thing. Early in the morning, not the time I should talk, high chance of uttering nonsense :-( Am 27. Mai 2022 07:34:06 schrieb Hans-Martin Mosner via mailop : This is most likely reflector spam

Re: [mailop] Forum/Blog spam turned up to 11

This is most likely reflector spam containing URL shortener links (bit.ly, u.to, or some other) in the name field of contact forms. Depending on scale, I would advise either to switch off automatic confirmation of contact form submissions and always respond personally when submissions are

[mailop] Someone from freenet.de on this list?

Please contact me off-list. Your "rate-limiting" handling of non-SPF mail isn't rate-limiting but blocking legitimate traffic. Cheers, Hans-Martin ___ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop

[mailop] *** SPAM *** Sparkpost sending spam on behalf of \"Time Travel Promotion LP\"

Hi, just a heads-up about ESP Sparkpost. They are delivering spam mail for "Time Travel Promotion LP" (using sending domains findingsale.com, offer-experts.com, perfect-quotes.com, quotes-expert.com, service-expert.net, verticalmailer.com, yougetnow.com). Most of these domains have no

Re: [mailop] To Sendinblue, Mailjet, SES, ActiveCampaign, and every other

Am 10.05.22 um 10:29 schrieb Jarland Donnell via mailop: I need these two email addresses removed from EVERY newsletter on EVERY platform: jarl...@mxroute.com ab...@mxroute.com Sendinblue, Mailjet, SES, ActiveCampaign, and every other company that fits in a category with these companies. I

[mailop] Sendinblue sending suspicious mails claiming to be from DEKA GreenVest

Hello, just a heads-up: It looks like a current e-mail campaign sent out by SIB on behalf of "gvestdeka.com" and directing recipients to "deka-bankdepot.com" facilitates bank account phishing. gvestdeka.com is registered through dynadot.com. They probably won't reveal the identity of their

Re: [mailop] Understanding specific issue with from header field in google bounce reply

The base-64 encoding must only be done on the "comment" part of the From address, not on the "" part. Cheers, Hans-Martin Am 2. Mai 2022 09:14:09 schrieb Alexander Neilson via mailop : Hi Team Please feel free to let me know this was not a suitable question for this list, apologies in

Re: [mailop] Does anyone know, how operates h-email.net email service?

Am 29.04.22 um 15:16 schrieb Benoît Panizzon via mailop: Hi List Privacy Policies make it hard for us to solve the email issue of one of our customers. I could rant quite a bit about misguided privacy in the operation of networking services but I'll better stop before I start... As

Re: [mailop] [E] $GOOG

Am 18.04.22 um 21:02 schrieb Bill Cole via mailop: On 2022-04-18 at 13:32:07 UTC-0400 (Mon, 18 Apr 2022 12:32:07 -0500) Larry M. Smith via mailop is rumored to have said: ... I'm going to disagree. To the best of my knowledge Yahoo, Vz, AOL, or Microsoft do NOT re-queue messages after

Re: [mailop] does ESP have the preference for email domains

Actually, it's not a strict block, but we temp reject first, and switch to accept or reject with a mitigation web form address. So, don't let our policy discourage you! Cheers, Hans-Martin Am 18. April 2022 13:15:09 schrieb wilson via mailop : I am sorry that one small operator has noticed

Re: [mailop] Best mailbox provider for personal domain?

Am 08.04.22 um 18:37 schrieb Brayden via mailop: Digital Ocean blocks port 25 by default and I've heard getting it unblocked can be a nightmare. https://docs.digitalocean.com/support/why-is-smtp-blocked/ It's definitely a non starter for e-mail. Linode does the same but their guide is 10x

Re: [mailop] Business Office 365 hosted Exchange IP Addresses shared between customers? Lateral damage on spam sending customer.

Friends don't let friends run mail servers on shared cloud services. Seriously, mail is a reputation thing. If your IP address or IP range has a bad reputation because you have to share it with scum, don't be surprised that your mail isn't getting through. If you don't use your own domain name

[mailop] Bogon? 81.70.92.213

Hi folks, in a trustworthy Received: line of a spam I found the source IP 81.70.92.213. Strangely, this IP is pingable, and traceroute finds a way, but neither the IP whois nor the BGP looking glass show to whom it belongs. Not being really knowledgeable about the global routing mechanisms,

Re: [mailop] large number of mail connections

Am 20.03.22 um 00:57 schrieb Geoff Mulligan via mailop: I have 3 different mail servers that are currently being inundated with mail connections from: 109.237.103.42 This appears to be from Russia - go figure. Geoff HostGlobalPlus - I've blocked the whole 109.237.96.0/21 at the IP level

Re: [mailop] Mass of Spam from Linode Networks associated with wewe.global

Same spammer is using <> sender addresses now, with a wild mixture of atlassian.net, trend-global.com, google.com, sparkpostmail.com domains mentioned in various header lines. All fake I presume. Cheers, Hans-Martin ___ mailop mailing list

Re: [mailop] Mass of Spam from Linode Networks associated with wewe.global

Am 10.03.22 um 15:54 schrieb Jim Ackley via mailop: Thanks to everyone who submitted an abuse report for this so far. Our Trust & Safety team is aware of an uptick of spam reports associated with wewe.global domains. We’re investigating each report we receive, so please keep them coming. It's

Re: [mailop] Best email server for home use...

23. Februar 2022 14:10, "Sinclair, John via mailop" mailto:mailop@mailop.org?to=%22Sinclair,%20John%20via%20mailop%22%20)> schrieb: Staring at the end of the Google Suite (aka Workspace) free lunch days. Trying to find a free solution that will still let me use a custom domain, not

  1   2   3   >