Re: [mailop] SMTP noise from *.bouncer.cloud

2022-09-02 Thread Larry M. Smith via mailop
On 8/31/2022, Bill Cole via mailop wrote: (snip) Who/what/where their clients are, and for what purpose of course, is not likely something we will find out unless they like to share more, but we can continue discussing this in terms of all the operators out there, and what constitutes the good

Re: [mailop] State of the Union - Update due to activity..

2022-08-31 Thread Larry M. Smith via mailop
On 8/30/2022, Michael Peddemors via mailop wrote: Normally, we could simply post this on a blog, but the traffic is significant enough that other mail operators might be interested.. Last couple of days a LOT of new IP Address abuse from the same actors using throwaway domains, on the typical

Re: [mailop] HR 8160 and SB 4409: The "You're not allowed to run political campaign email through your spam filter" act

2022-07-30 Thread Larry M. Smith via mailop
On 7/29/2022, Anne Mitchell via mailop wrote: I want to be sure that everyone here is aware of a piece of pending legislation in the U.S. that is in committee in both the House and the Senate right now. It's called the Political BIAS Emails Act of 2022 (BIAS is short for “Bias In Algorithm Sor

Re: [mailop] Did Google become stricter about RFC 5322?

2022-07-13 Thread Larry M. Smith via mailop
On 7/13/2022, Philip Paeps via mailop wrote: In the past couple of days, I'm seeing an uptick in rejects from Gmail as follows: <[elided]@gmail.com>: host     gmail-smtp-in.l.google.com[2607:f8b0:4004:c17::1a] said: 550-5.7.1     [2610:1c1:1:606c::19:2] Our system has detected that this messa

Re: [mailop] Talking DOXING of spammers on this mailing list..

2022-06-06 Thread Larry M. Smith via mailop
On 6/1/2022, Michael Peddemors via mailop wrote: (snip) In leiu of my bi-weekly state of the union (spam threats) email, I think we should consider working together to do a little 'doxing' of the bad guys.. Now, I know it is done in other places, SpamHaus used to post regularly about ROCKSO spa

Re: [mailop] Spamhaus "open resolver" errors

2022-05-14 Thread Larry M. Smith via mailop
On 5/13/2022, John Levine via mailop wrote: It appears that Chris via mailop said: On 2022-05-13 12:57, Grant Taylor via mailop wrote: I suspect that their $BLOCKING method has progressed to false positives as a way to get email administrator's attention. It's progressed to false positives

Re: [mailop] [E] $GOOG

2022-04-20 Thread Larry M. Smith via mailop
On 4/19/2022, Hans-Martin Mosner via mailop wrote: (snip)> When I detect those in the logs I add the MAIL FROM address to the known-spammer list, which causes the mail to be rejected earlier in the SMTP dialogue and seems to stop the retries. Most times I don't care whether they're retrying rep

Re: [mailop] [E] $GOOG

2022-04-20 Thread Larry M. Smith via mailop
On 4/18/2022, Bill Cole via mailop wrote: (snip) Did you mean "GMail?" Yes, you are correct -- Gmail. Sorry about that. Finger memory, or something. -- SgtChains ___ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop

Re: [mailop] [E] $GOOG

2022-04-18 Thread Larry M. Smith via mailop
Sorry, late to the game... On 4/17/2022, John Levine via mailop wrote: It appears that Tobias Fiebig via mailop said: If your friends somehow believe that Gmail is the only mail provider in the world I suppose I am sorry for them but I don't understand why that is anyone else's problem. Th

Re: [mailop] Ethics Complaint to Princeton (was: Privacy research spam apparently from a grad student at Princeton)

2021-12-19 Thread Larry M. Smith via mailop
On 12/18/2021, yuv via mailop wrote: (snip) Their FAQ is up at and it all looks like a lawyers-approved shield to try to justify what they have done. They know they have pushed too far. The question is whether they will learn from this and whether the le

Re: [mailop] Ethics Complaint to Princeton (was: Privacy research spam apparently from a grad student at Princeton)

2021-12-18 Thread Larry M. Smith via mailop
On 12/18/2021, Larry M. Smith via mailop wrote: On 12/18/2021, yuv via mailop wrote: (snip) Their FAQ is up at <https://privacystudy.cs.princeton.edu/> and it all looks like a lawyers-approved shield to try to justify what they have done.  They know they have pushed too far.  The quest

Re: [mailop] Ethics Complaint to Princeton (was: Privacy research spam apparently from a grad student at Princeton)

2021-12-18 Thread Larry M. Smith via mailop
On 12/18/2021, yuv via mailop wrote: (snip) Their FAQ is up at and it all looks like a lawyers-approved shield to try to justify what they have done. They know they have pushed too far. The question is whether they will learn from this and whether the le

Re: [mailop] Ethics Complaint to Princeton (was: Privacy research spam apparently from a grad student at Princeton)

2021-12-16 Thread Larry M. Smith via mailop
On 12/16/2021, Al Iverson via mailop wrote: On Thu, Dec 16, 2021 at 9:48 AM Larry M. Smith via mailop wrote: On 12/15/2021, Anne P. Mitchell, Esq. via mailop wrote: FYI, I have sent my own letter, with my full signature (same one as below), to Princeton, including cc:ing the dept. chair

Re: [mailop] Ethics Complaint to Princeton (was: Privacy research spam apparently from a grad student at Princeton)

2021-12-16 Thread Larry M. Smith via mailop
On 12/15/2021, Anne P. Mitchell, Esq. via mailop wrote: FYI, I have sent my own letter, with my full signature (same one as below), to Princeton, including cc:ing the dept. chair, the abuse department, and the legal department. I do hope you send yours, and soon, as it would be a good 1-2 pun

Re: [mailop] Privacy research spam apparently from a grad student at Princeton

2021-12-15 Thread Larry M. Smith via mailop
On 12/15/2021, Al Iverson via mailop wrote: I wonder if this guy would teach me his secret to get AWS to unblock port 25 for him. They turned me down, as I'm sort of a security risk, being an elite hax0r with xnnd.com and all that, haxing port 25s all over town. (And maybe I don't WANT to use SES

Re: [mailop] Privacy research spam apparently from a grad student at Princeton

2021-12-15 Thread Larry M. Smith via mailop
On 12/15/2021, Raymond Dijkxhoorn via mailop wrote: (snip) If people received ones not originating from the below list (and the new reported org version) please let me know. yosemitemail[.]com potomacmail[.]com envoiemail[.]fr novatormail[.]ru The list of domains being used appears to be her

Re: [mailop] Idea for new internet standard: DKIM-QR

2021-12-14 Thread Larry M. Smith via mailop
On 12/11/2021, Sebastian Nielsen via mailop wrote: Hi. (snip) Note here, that if full body is signed, the content of the QR code signature, and the DKIM-Signature: field, will differ by the bh=, as the email without QR-code embedded will be signed in the QR-signature, and the header DKIM-Sig

Re: [mailop] myshopify.com

2021-12-08 Thread Larry M. Smith via mailop
On 12/7/2021, John Levine via mailop wrote: It appears that Chris via mailop said: Mailops, is the listing of myshopify.com on AbuseIPDB a cause for concern? Many small firms use links to x.myshopify.com & asking if the AbuseIPDB listing impacts on email delivery. https://www.abuseipdb.com/ch

Re: [mailop] Anyone else notice that MS Hotmail/o365 might not be following RFC?

2021-11-29 Thread Larry M. Smith via mailop
On 11/24/2021, Michael Peddemors via mailop wrote: CONN: 40.107.96.87 -> 25 GeoIP = [US] PTR = mail-sn1anam02on2087.outbound.protection.outlook.com OS = Windows NT kernel Returning 250 ok [qp 3539411] for data QUIT command received, args: And then it terminates the connection, SSL collapses, w

Re: [mailop] Bro, do you even VERP?

2021-11-07 Thread Larry M. Smith via mailop
On 11/6/2021, Dan Mahoney (Gushi) via mailop wrote: All, I have email for my whole domain.  I'm typically known to sign up for services with vendor@mydomain, so that when an email gets retired or leaked, I route it to /dev/null, or in the event of a leak, retire it from the original place (sa

Re: [mailop] Feasibility of a private DNSBL

2021-11-04 Thread Larry M. Smith via mailop
On 11/3/2021, Nicolas JEAN via mailop wrote: On 15/10/2021 23:22, Paul Gregg via mailop wrote: (snip) Sorry for the late reply. The trick to this is not to limit by IP address - but to implement service (API) keys. e.g. each authorised user is given a key e.g. sj3Fa3Gomd937Z12 Then they make

Re: [mailop] WhatCounts/Costco silliness

2021-10-28 Thread Larry M. Smith via mailop
On 10/27/2021 12:25 PM, Mickey Chandler via mailop wrote: If you want to get THAT pedantic about it, so is sending an email. After all, I can usually get info on the person's anti-spam solution, what MUA (other than the web interface) they used, and often the IP address they used to send the me

Re: [mailop] WhatCounts/Costco silliness

2021-10-28 Thread Larry M. Smith via mailop
On 10/27/2021 11:45 AM, Michael Peddemors via mailop wrote: Not to be a 'nitpicker', but isn't visiting a URL providing a lot more information that just the email address opt-out preferences ;) If done by the MUA passing the request to the user's browser, most likely... Or at least it _coul

Re: [mailop] Sendgrid spam of the day

2021-10-24 Thread Larry M. Smith via mailop
On 10/20/2021 6:56 AM, Michael Orlitzky via mailop wrote: On 2021-10-19 16:41:40, John R Levine via mailop wrote: Fake USPS spam, sent to my father who I am pretty sure has not ordered anything lately since he is dead. Tragically, we lose most of these because they still haven't figured out ho

[mailop] WhatCounts/Costco silliness

2021-10-24 Thread Larry M. Smith via mailop
Ya know, I'm not a deliverability guy; So there's a good chance that I don't understand how these 'List-Unsubscribe' headers work. However, I would believe that pointing it to LITERALLY 'www.example.com' doesn't produce the functionally desired. List-Unsubscribe:

Re: [mailop] Gmail's MTA is broken

2021-06-08 Thread Larry M. Smith via mailop
On 6/7/2021 1:13 PM, Mark Milhollan via mailop wrote: (snip) > In general Google's MTA handles SMTP just fine.  But an MTA isn't always > run in a way that blindly follows the RFCs. > > Some have learned that a 5xx code isn't always a permanent problem > though the extended code (5.x.x) and/or the

Re: [mailop] Gmail's MTA is broken

2021-06-08 Thread Larry M. Smith via mailop
On 6/7/2021 2:08 PM, Thomas Walter via mailop wrote: (snip) > And there's also systems that send a 5xx and immediately disconnect > without waiting for the "quit" from the initiating party to properly > terminate the SMTP session. > > In those cases MTAs following the RFCs see this as a failed con

Re: [mailop] Gmail's MTA is broken

2021-06-06 Thread Larry M. Smith via mailop
On 6/6/2021 2:01 PM, Gene Hightower wrote: > On 06/06/2021 07:34, Larry M. Smith via mailop wrote: > >> Seems that gmail.com's MTA can't properly speak SMTP. [...] > > $ telnet imp.fahq2.com smtp > Trying 47.12.77.216... > Connected to imp.fahq2.com.

[mailop] Gmail's MTA is broken

2021-06-06 Thread Larry M. Smith via mailop
Seems that gmail.com's MTA can't properly speak SMTP. I've been seeing re-queuing and re-sending of permanent failures for some time now, but now I'm seeing its user simply hitting forward and sending the bounce to the original failed recipient. .. I do get pretty worked up by not being able to f

Re: [mailop] HaveIBeenPwned Was: Abusix Potentially Compromised Account Report

2020-03-27 Thread Larry M. Smith via mailop
Not trying to rehash things, but while catching up on reading; On 3/24/20 11:52 AM, Michael Peddemors via mailop wrote: > On 2020-03-24 9:35 a.m., micah anderson via mailop wrote: >> Steve Freegard via mailop writes: >> >>> I included the partial SHA-1 to be compatible with automation and >>> too