Re: [GTALUG] Spamhaus block

Uhm, no. For example: If you would ask 8.8.4.4 the in-addr.arpa for "your" rented OVH ip resource, then 8.8.4.4 would go and ask OVH for the answer. And no, Spamhaus does not "red flag" any ipv4/6 resource for lack of a reverse name. So no mystery for me here... OVH is known for being less

Re: [GTALUG] Spamhaus block

Happy to report that OVH got it fixed for me. They replied to the support ticket within 24 hours. After two interactions we were done. They said it took some time for the reverse DNS to replicate (for the reverse record I did setup days earlier). Whether it was just that delay or they did

Re: [GTALUG] Spamhaus block

| From: Val Kulkov via talk | Do you have a permanent static IP address? If not, you may occasionally be | picking up a "dirty" IP address. It's clear (now) that Marc has a static IP address. It really isn't worth trying to use a dynamic IP address for mail. But I did it. I used to use a

Re: [GTALUG] Spamhaus block

Here's an example of a request header. The IP and host name are in the request header. This is a Bingbot request. For a ban I usually only use the IP. 2019-02-11:00:03:53 URL: /wp/tag/fire-code/ IP: 157.55.39.xxx Accept: */* Accept-Encoding: gzip, deflate Cache-Control: no-cache Connection:

Re: [GTALUG] Spamhaus block

On 02/22/2019 12:11 PM, Giles Orr wrote: > But your use-case is vanishingly small: no one uses IP addresses anymore As I mentioned in another note, there is one case where IP address is mandatory.  It's when I connect to my cable modem for management.  It works only if I specify the IP address. 

Re: [GTALUG] Spamhaus block

On 02/22/2019 12:08 PM, Val Kulkov via talk wrote: > Since HTTP 1.1, a request may contain the "Host" > header: https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/Host > which web servers can they use to serve proper content for a given > host name. See, for > example, 

Re: [GTALUG] Spamhaus block

On Fri, 22 Feb 2019 at 11:58, James Knott via talk wrote: > On 02/22/2019 11:33 AM, Giles Orr wrote: > > We use this ability a fair bit at my work: the web server determines > > what name you're looking for from the incoming header, > > What would be in the header? All IP has in the header to

Re: [GTALUG] Spamhaus block

On Fri, 22 Feb 2019 at 11:58, James Knott via talk wrote: > On 02/22/2019 11:33 AM, Giles Orr wrote: > > We use this ability a fair bit at my work: the web server determines > > what name you're looking for from the incoming header, > > What would be in the header? All IP has in the header to

Re: [GTALUG] Spamhaus block

On 02/22/2019 11:33 AM, Giles Orr wrote: > We use this ability a fair bit at my work: the web server determines > what name you're looking for from the incoming header, What would be in the header?  All IP has in the header to differentiate connections is IP address and port number.  For example,

Re: [GTALUG] Spamhaus block

On Fri, 22 Feb 2019 at 11:12, James Knott via talk wrote: > On 02/22/2019 11:00 AM, Don Tai wrote: > > A host will have a number of IPs, a box is on a specific IP, there > > will be a number of web sites on the same box, many domain names > > pointing to the same IP. For example my sites are on

Re: [GTALUG] Spamhaus block

On 22/02/2019 11:25, Val Kulkov via talk wrote: > Most or all participants to this thread appear to agree that picking the > right IP neighbourhood is key to success. > > So, how does one pick a good neighbourhood? Are there any tried-and-true > rules or methods? Use a reputable cloud provider

Re: [GTALUG] Spamhaus block

On Fri, 22 Feb 2019 at 00:36, ac via talk wrote: > > Do not expect to be able to relay email communications properly, from > such a poor IP neighborhood. > Most or all participants to this thread appear to agree that picking the right IP neighbourhood is key to success. So, how does one pick a

Re: [GTALUG] Spamhaus block

On 02/22/2019 11:00 AM, Don Tai wrote: > A host will have a number of IPs, a box is on a specific IP, there > will be a number of web sites on the same box, many domain names > pointing to the same IP. For example my sites are on a box with 25 > different sites that I know of, all pointing to the

Re: [GTALUG] Spamhaus block

A host will have a number of IPs, a box is on a specific IP, there will be a number of web sites on the same box, many domain names pointing to the same IP. For example my sites are on a box with 25 different sites that I know of, all pointing to the same IP. If one of them causes a ban on the IP

Re: [GTALUG] Spamhaus block

On 02/21/2019 08:38 PM, Don Tai via talk wrote: > You're on a shared host with any number of other web sites and owners. > When one goes rogue and launches bots at the world the IP is logged > and is used to ban all the sites on that IP, which might include your > own. Bots reappear on a regular

Re: [GTALUG] Spamhaus block

If you want to relay email and operate a working email server, you need to start with ipv4 reputation. If you host in the middle of a criminal hotspot and at a socalled "bullet proof" host (a host that does not care about abuse complaints and has a bad reputation) Do not expect to be able to

Re: [GTALUG] Spamhaus block

I gave up on trying to keep a local mail server off of spamhaus and similar lists and ended up getting an account at authsmtp.com to relay outbound mail through so that they can deal with the deliverability side of it. Sending 4000 messages a month is probably cheaper than the amount of time

Re: [GTALUG] Spamhaus block

On 21/02/2019 17:53, Stewart Russell via talk wrote: > On Thu, Feb 21, 2019, 15:53 Marc Lijour, > wrote: > > +1 > > turns out that OVH is cheap and not-for-profit organizations are > looking for cheap (same as spammers I guess), ... > > We're not

Re: [GTALUG] Spamhaus block

You're on a shared host with any number of other web sites and owners. When one goes rogue and launches bots at the world the IP is logged and is used to ban all the sites on that IP, which might include your own. Bots reappear on a regular basis, using the same IP, so bans, in general, are for

Re: [GTALUG] Spamhaus block

On Thu, Feb 21, 2019, 15:53 Marc Lijour, wrote: > +1 > > turns out that OVH is cheap and not-for-profit organizations are looking > for cheap (same as spammers I guess), ... > We're not looking for cheap at all. A site hosted by WPEngine isn't cheap. It's the arbitrariness of spam blocking: we

Re: [GTALUG] Spamhaus block

I forgot Planet Hoster in Montreal On Thu, 21 Feb 2019 at 15:49, Marc Lijour wrote: > fair enough -I can understand that perspective > > What is my best bet? AWS? Azure? > On 2019-02-21 3:41 p.m., Don Tai via talk wrote: > > OVH is a well known den of spam, scraper and malicious bots. This is

Re: [GTALUG] Spamhaus block

+1 turns out that OVH is cheap and not-for-profit organizations are looking for cheap (same as spammers I guess), we're caught in the same bag On 2019-02-21 3:50 p.m., Stewart Russell via talk wrote: On Thu, Feb 21, 2019, 15:42 Don Tai via talk, > wrote: ... You

Re: [GTALUG] Spamhaus block

On Thu, Feb 21, 2019, 15:42 Don Tai via talk, wrote: > ... You need to move to another host provider. > This is not always an option. The not-for-profit I work for has a web site run from WP Engine. It can send e-mail for updates, subscriptions, etc. Just one of the wp.com hosts that the mail

Re: [GTALUG] Spamhaus block

fair enough -I can understand that perspective What is my best bet? AWS? Azure? On 2019-02-21 3:41 p.m., Don Tai via talk wrote: OVH is a well known den of spam, scraper and malicious bots. This is your problem. I am sure Spamhaus has given up on the number of bots they need to block and

Re: [GTALUG] Spamhaus block

On 2019-02-21 3:03 p.m., Kevin Cozens via talk wrote: OVH allows you to set a reverse IP mapping if you are renting a full server using the website account/server management tools. Yes it does (under IP in the cloud management tab of the web console), but this is what I got (thrown

Re: [GTALUG] Spamhaus block

OVH is a well known den of spam, scraper and malicious bots. This is your problem. I am sure Spamhaus has given up on the number of bots they need to block and banned the whole IP range. I know I have. You need to move to another host provider. OVH allows the rampant running of bots, so this is

Re: [GTALUG] Spamhaus block

On 2019-02-21 2:49 p.m., Alex Volkov via talk wrote: You can't set reverse DNS records yourself, so you will need to contact your service provider and ask them to change the record for IP 54.39.185.225 from ip-54-39-185.eu to your mail server dns name. [snip] On 2019-02-21 2:43 p.m., Marc

Re: [GTALUG] Spamhaus block

I think this might be it. You can't set reverse DNS records yourself, so you will need to contact your service provider and ask them to change the record for IP 54.39.185.225 from ip-54-39-185.eu to your mail server dns name. Alex. On 2019-02-21 2:43 p.m., Marc Lijour wrote: I thought I

Re: [GTALUG] Spamhaus block

I thought I had, and I do. OVH is allocating my PTR in a group of 8 addresses (*ip-54-39-185.eu.*). May be that's where the problem lies? I sent a ticket to OVH. $ dig -x 54.39.185.225 ; <<>> DiG 9.11.4-3ubuntu5-Ubuntu <<>> -x 54.39.185.225 ;; global options: +cmd ;; Got answer: ;;

Re: [GTALUG] Spamhaus block

I have 8.2/10 pretty good considering that I got a -2 from Pyzor for my blank email On 2019-02-21 2:09 p.m., Val Kulkov via talk wrote: On Thu, 21 Feb 2019 at 14:03, Val Kulkov > wrote: Also, it seems to me that even permanent static IP addresses are not

Re: [GTALUG] Spamhaus block

On Thu, 21 Feb 2019 at 14:17, Alex Volkov via talk wrote: > I remember there's an open-source mail config/blacklist checking website > tool, but I don't remember its name. > https://mxtoolbox.com/blacklists.aspx perhaps? --- Talk Mailing List talk@gtalug.org

Re: [GTALUG] Spamhaus block

Do you have reverse DNS records set up -- this is pretty much a requirement for running any mail server these days. This mailing list kept getting blocked by Spamhaus when we used IPv6 address to send out mail. I have no idea what was wrong with that, but the minute I turned off IPv6

Re: [GTALUG] Spamhaus block

I'm hosting at OVH, running a small VM with SSD. The IP is fixed. A range of IP owned by the cloud provider might explain things, except that I'm not responsible (nor have any control) of bad neighbours. On 2019-02-21 2:03 p.m., Val Kulkov via talk wrote: On Thu, 21 Feb 2019 at 13:34, Marc

Re: [GTALUG] Spamhaus block

On Thu, 21 Feb 2019 at 14:03, Val Kulkov wrote: > Also, it seems to me that even permanent static IP addresses are not made > the same. I get a feeling that some spam databases do not "like" certain > ranges of IP addresses. Although I have no direct evidence of it, I suspect > that these spam

Re: [GTALUG] Spamhaus block

On Thu, 21 Feb 2019 at 13:34, Marc Lijour via talk wrote: > Does anyone has insights about dealing with Spamhaus? > > I'm getting increasingly frustrated by being listed without explanation. > I run a very low bandwidth mail server and a website for my business. I > am running postfix with SPF,

Re: [GTALUG] Spamhaus block

On Thu, 21 Feb 2019 at 13:34, Marc Lijour via talk wrote: > > Does anyone has insights about dealing with Spamhaus? Is it being run on shared hosting? I had an issue with a similar service because the server shared an IP address with another site that was hacked and was spamming people. ---

[GTALUG] Spamhaus block

Does anyone has insights about dealing with Spamhaus? I'm getting increasingly frustrated by being listed without explanation. I run a very low bandwidth mail server and a website for my business. I am running postfix with SPF, DKIM, and DMARC. I'd like to know what I am missing. Spamhaus