Re: [mailop] Google Workspace subdomain spam

In message , Gellner, Oliver via mailop writes >As mentioned by Robert this is not coming from Google Workspace but Google >Groups. As far as I have understood it, spammers create or hijack newsgroups, >add countless addresses to the groups and then send their spam to the groups >addresses. >

Re: [mailop] PayPal Phishing from Paypal servers.. Now coming through o365 as well

In message , Michael Denney via mailop writes >The instances of this we've seen - aren't actually phishing, just fraud. > >Generating invoices via PayPal to an o365 address that then forwards that out >to >the final recipient. In some cases ... where phone numbers are present, then ringing tha

Re: [mailop] Gmail emoji reactions

In message , Paul Menzel via mailop writes >Since this week I got some emails from Gmail with just an emoji in the >body. ... >Does somebody have more insight if they tried to make it a standard, and >failed, so went on without one? there is an "experimental" RFC9078. I understand, from dis

Re: [mailop] [E] Yahoo 'temporarily' deferred

In message <20240818173004.ga27...@rafa.eu.org>, Jaroslaw Rafa via mailop writes >> and thereafter (at >> Yahoo anyway) further email from that sending address will go in the >> inbox no matter what the machine learning system thinks overall. > >I had that exact problem with Google once. My mess

Re: [mailop] [E] Yahoo 'temporarily' deferred

In message <20240818152433.ga27...@rafa.eu.org>, Jaroslaw Rafa via mailop writes >Yeah, that's the typical "dead loop" problem of mistaken spam >classifications. Your mail gets mistakenly classified as spam, so the >recipient doesn't see it in inbox and doesn't know the mail has arrived >(most us

Re: [mailop] Large Volume of Emails in Violation of Acceptable Use Policies

In message , Ferris, Rhys (SCC) via mailop writes >In the last 24 hours we have received 693,937 emails >from select freemail domains with top senders having sent between 500 and 800 >emails in a single day. This has been ongoing and in the last 30 days we have >received 23,196,000+ emails fro

Re: [mailop] How to respond to a subscription attack

In message <484dfe5a-71e7-4851-8de0-fe35342cff97@spamtrap.tnetconsulting .net>, Grant Taylor via mailop writes >Is there any value in contacting postmaster@ / abuse@ for senders that >participated in a mass subscription bomb attack? this is "list bombing" and is done to simply annoy, or more of

Re: [mailop] Debugging fwd issue meta.com to zoho.com (Help from user under meta.com needed)

In message , Tobias Fiebig via mailop writes >My point here is, that 'deliverability' is often more of a priority for >ESPs than 'following all documents to the letter'. Granted, for the >bigger ones, usually more like 'outbound deliverability' than 'inbound >deliverability', though. > >Hence

Re: [mailop] Mailbox Filling w. Opt-In/Sign-Up mails

In message <6104b9876b594050d36ca90ca6a169cda7a8e684.ca...@fiebig.nl>, Tobias Fiebig via mailop writes >A bit of digging found several end-user reports of the following MO: > >- Get phished >- Something expensive is bought >- Mailbox is overflown right when the notification of the transaction >co

Re: [mailop] DKIM validity period (anti-forgery vs. anti-spying)

In message <65860e95.20895.448c...@postmaster.inter-corporate.com>, Randolf Richardson, Postmaster via mailop writes > Would you mind sending me a linjk to your thesis? That's an >interesting topic, and based on what you've written I get the >impression that you have a lot more experienc

Re: [mailop] DKIM validity period (anti-forgery vs. anti-spying)

In message <6585e535.11582.3a72...@postmaster.inter-corporate.com>, Randolf Richardson, Postmaster via mailop writes >> The most commonly seen method of tracking is probably inclusion of >> specifically crafted links in the message, that refer to a tracking server >> run by the sender, so the sen

Re: [mailop] Convincing clients of the importance of eMail recipient consent for mailing list subscriptions

In message , Byron Lunz via mailop writes >We've required confirmed-opt-in for years. But a few months ago, I noticed >that our servers were sending out hundreds of 'confirmation required' >messages every day. They were going to obviously-bogus addresses, likely >submitted to our submission forms

Re: [mailop] Success MiTM attack

In message , Matt Corallo via mailop writes > > >On 10/23/23 3:26 AM, Jaroslaw Rafa via mailop wrote: >> However, all this discussion is hardly related to email, as - as many have >> noted - there's hardly any certificate checking at all between MTAs. > >Indeed, MTAs mostly use DNSSEC/DANE which

Re: [mailop] Success MiTM attack

In message <07d58480-7dde-4d15-a5ca-5bb6c8e10...@mtasv.net>, Matt Palmer via mailop writes >The relative "noisiness" of the attack, in fact, is a fairly strong signal >that it *isn't* lawful intercept; western law enforcement agencies are >typically very hesitant to do anything that could "tip of

Re: [mailop] [E] Re: AOL/Yahoo requiring SOA record for MAIL FROM domain name?

In message <56b83491-6441-4d1e-a3ef-008da3311...@slavino.sk>, Slavko via mailop writes >When spammers are able to create proper DNS records directly used >in email authentification, what problem will be the SOA record for them? In order to have a domain with an SOA record they have to purchase a

Re: [mailop] AOL/Yahoo requiring SOA record for MAIL FROM domain name?

In message <601b01c7-1475-32e0-5aba-e595272e9...@tnetconsulting.net>, Grant Taylor via mailop writes >My concern is that Yahoo / AOL isn't creating an arbitrary "every domain >must have an SOA record" and completely loosing sight of the fact that >SOAs belong to the /zone/ apex and are not asso

Re: [mailop] Guide for setting up a mail server ?

In message <20230709223922.dd59afd9f...@ary.qy>, John Levine via mailop writes >A friend of mine wants to set up a mail server on a VPS and asked me what >he needs to do beyond the obvious setting up postfix and dovecot. Is there >a good summary somewhere? not that I know of -- arguably there s