treff: Re: [mailop] Howto be a good mailop (best practice / insights wanted)
On Fri, 2019-05-31 at 11:03 +, Stefan Bauer via mailop wrote:
> Hi Ken,
>
> thanks again for your input. Regarding
> Add a custom header (X-abuse)
>
> is this really a thing? Could not find many mail
On Fri, 2019-05-31 at 11:03 +, Stefan Bauer via mailop wrote:
> Hi Ken,
>
> thanks again for your input. Regarding
> Add a custom header (X-abuse)
>
> is this really a thing? Could not find many mails in my inbox with that
> header present at all nor any official recommendations about that.
>
l via mailop
Gesendet: Mittwoch 8 Mai 2019 20:01
An: mailop@mailop.org
Betreff: Re: [mailop] Howto be a good mailop (best practice / insights wanted)
On Wed, 2019-05-08 at 16:45 +, Stefan Bauer via mailop wrote:
> we have in place:
>
> only allow pre-defined sender-addresses after auth
On 2019-05-10 4:21 a.m., Laura Atkins via mailop wrote:
You don’t need to separate your transactional and your marketing mail on
different IPs because the filters aren’t using IPs as the unique mail
identifier.
I would suggest that you 'might' have a point when it comes to the
bigger players,
> On 10 May 2019, at 14:11, Leo Gaspard via mailop wrote:
>
> Steve Atkins via mailop writes:
>>> On May 10, 2019, at 10:50 AM, Leo Gaspard via mailop
>>> wrote:
>>> Laura Atkins via mailop writes:
For victims of listbombing, COI isn’t an answer. In fact, much of the
problem with
Steve Atkins via mailop writes:
>> On May 10, 2019, at 10:50 AM, Leo Gaspard via mailop
>> wrote:
>> Laura Atkins via mailop writes:
>>> For victims of listbombing, COI isn’t an answer. In fact, much of the
>>> problem with listbombing is COI mail.
>>>
>>> How do you propose to address that i
> On 10 May 2019, at 11:40, Michael Wise via mailop wrote:
>
>
> The solution ... is to stop thinking that all decisions on the legitimacy of
> an email can be resolved at the instant the machine is focusing on that one
> email.
>
> We need to move beyond "Spam" filtering as a one-off, per me
ool ?
-Original Message-
From: mailop On Behalf Of Steve Atkins via mailop
Sent: Friday, May 10, 2019 3:20 AM
To: Chris Adams via mailop
Subject: Re: [mailop] Howto be a good mailop (best practice / insights wanted)
> On May 10, 2019, at 10:50 AM, Leo Gaspard via mailop
> wr
> On May 10, 2019, at 10:50 AM, Leo Gaspard via mailop
> wrote:
>
> Laura Atkins via mailop writes:
>> For victims of listbombing, COI isn’t an answer. In fact, much of the
>> problem with listbombing is COI mail.
>>
>> How do you propose to address that issue?
>
> Captchas are a way to fo
Laura Atkins via mailop writes:
> For victims of listbombing, COI isn’t an answer. In fact, much of the problem
> with listbombing is COI mail.
>
> How do you propose to address that issue?
Captchas are a way to force the malicious subscriber to spend human or
computer time breaking it (if captc
mailop
> Sent: Thursday, May 9, 2019 2:54 PM
> To: mailop@mailop.org <mailto:mailop@mailop.org>
> Subject: Re: [mailop] Howto be a good mailop (best practice / insights wanted)
>
> On Thu, May 09, 2019 at 09:26:50AM -0400, Rob McEwen via mailop wrote:
> > you should stron
> On 9 May 2019, at 22:53, Rich Kulawiec via mailop wrote:
>
> On Thu, May 09, 2019 at 09:26:50AM -0400, Rob McEwen via mailop wrote:
>> you should strongly encourage your customers to
>> captcha-protect their signup forms to prevent bots from signing up spamtrap
>> addresses.
>
> No, you shoul
Reporting
Tool<http://www.microsoft.com/en-us/download/details.aspx?id=18275> ?
From: mailop On Behalf Of Rob McEwen via mailop
Sent: Thursday, May 9, 2019 4:20 PM
To: mailop@mailop.org
Subject: Re: [mailop] Howto be a good mailop (best practice / insights wanted)
I never claimed that CAPTC
I never claimed that CAPTCHA is FUSSP - it isn't. ("strawman's arg") And
I realize that CAPTCHA can be defeated. That part wasn't news to me.
HOWEVER:
(1) never let the quest for perfection get in the way of achievable
incremental improvements (which is EXACTLY what Rich and Michael are doing!
---
From: mailop On Behalf Of Rich Kulawiec via mailop
Sent: Thursday, May 9, 2019 2:54 PM
To: mailop@mailop.org
Subject: Re: [mailop] Howto be a good mailop (best practice / insights wanted)
On Thu, May 09, 2019 at 09:26:50AM -0400, Rob McEwen via mailop wrote:
> you should strongly encourag
On Thu, May 09, 2019 at 09:26:50AM -0400, Rob McEwen via mailop wrote:
> you should strongly encourage your customers to
> captcha-protect their signup forms to prevent bots from signing up spamtrap
> addresses.
No, you shouldn't. I'm going to quote something that I just sent
elsewhere, so my apo
I'll have more to say on this (of course I will ;) ) but I'll mention
that I'm attempting to assemble what I'll call, for lack of a better
term, a roadmap of RFCs that mail system operators should be familiar
with. I'm doing this because I'm trying to (a) train some junior
people and (b) fill in g
On 5/9/2019 9:15 AM, Paul Kincaid-Smith via mailop wrote:
If your service will enable customers to collect email addresses via a
web form, you can reduce the risk of list bombing:
https://www.m3aawg.org/rel-WebFormHeader
The documents that Paul referenced in his last message - probably
men
Hi Stefan,
I am encouraged that you're choosing to be proactive and want to configure
your platform and processes to reduce the risk of email abuse.
M3AAWG, the Messaging, Mobile and Malware Anti-Abuse Working Group has
published numerous best practices documents to help senders and ESPs reduce
a
On 5/8/19 1:48 PM, Ken O'Driscoll via mailop wrote:
> There is likely more, above is, as I said, off the top of my head. Good
> luck.
>
One to add:
* Sign up for feedback loops with the major providers.
I see a remarkable number of phished-credential bots that are smart
enough to send one mess
> Hi Ken,
>
>
>
> awesome. Thats a bunch of helpful steps! Thanks a lot!
>
I'm a few years removed from directly administering a 'real' mail server
(directly, at least) but I have some observations about Ken's list:
>
> * Monitor abuse@ and make sure that this address a) exists for your
> clien
Hi Ken,
awesome. Thats a bunch of helpful steps! Thanks a lot!
Cheers
Stefan
-Ursprüngliche Nachricht-
Von: Ken O'Driscoll via mailop
Gesendet: Mittwoch 8 Mai 2019 20:01
An: mailop@mailop.org
Betreff: Re: [mailop] Howto be a good mailop (best practice / insights wanted)
O
On Wed, 2019-05-08 at 16:45 +, Stefan Bauer via mailop wrote:
> we have in place:
>
> only allow pre-defined sender-addresses after auth
> monitor mail-queues for high connection count
> monitor RBLs if we're listed
> only allow single mail / 5s to be sent outgoing
> anti-virus checking of att
Hi,
we're providing a small smtp sent-service for our customers (via submission
port / auth only - postfix). ~ 7.000 outgoing mails / day (via 2 hosts in
different data centers/ip networks).
As the amount of mails increase, we would like to be ready for
- stolen auth-data to our service
24 matches
Mail list logo
