Re: [mailop] Best practices for forwarding email to Gmail (revisited)

On Fri, Jun 24, 2022 at 01:13:31PM -0400, Todd Herr via mailop wrote: > > If the forwarder first filters out the spam, then rewriting should be fairly > safe to do. The forwarder filters spam, yes, but it can't catch all spam. That was the initial reason to leave envelope sender as-is: Gmail se

[mailop] Best practices for forwarding email to Gmail (revisited)

Hello, After a discussion on mailop back in 2015, I made the following note in some to-gmail-forwarder configuration: When forwarding to non-local addresses, don't automatically rewrite the envelope sender. This used to be best practice but some domains explicitly recommend against i

[mailop] bulk-mailer amnesia (sendlabs, mailjet)

Do commercial bulk-mailers count delivery failures? Because this: Mar 15 17:34:53 connect: host=mtaout-202-ewr.sendlabs.com addr=216.146.33.202 Mar 15 17:34:54 helo: name=mtaout-202-ewr.sendlabs.com Mar 15 17:34:54 envfrom: from=bounces+petar=smokva@dynect-mailer.net Mar 15 1

Re: [mailop] "Spammer TLDs" and IP addresses without a reverse?

On Tue, Apr 19, 2016 at 11:19:57AM +0200, Renaud Allard via mailop wrote: > > On 04/19/2016 09:15 AM, Michelle Sullivan wrote: > > > > As well... ;-) (and for those that don't get it... the host issued 'HELO > > [65.55.234.213]' or 'EHLO [65.55.234.213]' .. perfectly legal but > > something malwa

Re: [mailop] "Spammer TLDs" and IP addresses without a reverse?

On Mon, Apr 18, 2016 at 01:41:55PM +0300, Otto J. Makela wrote: > Would we actually miss any real emails if our mail server > started rejecting all emails from .top, .win and .xyz TLDs? I don't think it's a good idea to reject any TLDs with open registration. BTW, Alphabet is at abc.xyz.. > Als

Re: [mailop] TLS/SSL DROWN attack with respect to email servers

On Wed, Mar 02, 2016 at 09:45:50PM +, Matthew Huff wrote: > If your mail server still is advertising SSLv2, you SSL private key may be > vulnerable. Does DROWN allow an attacker to steal the server’s private key? No. DROWN allows an attacker to decrypt one connection at a time. The attacker

[mailop] What to do with Amazon SES?

How should one handle Amazon SES abuse? I'm seeing more and more junk from them but I also don't remember my abuse reports getting far. ___ mailop mailing list mailop@mailop.org https://chilli.nosignal.org/cgi-bin/mailman/listinfo/mailop

[mailop] crippling gmail rate limit

mendations. Outgoing messages are not DKIM signed, the MTA's IP is listed in dnswl (which is a whitelist) and absent in any public blacklist. Thanks, Petar Bogdanovic signature.asc Description: PGP signature ___ mailop mail