On Mon, 29 Apr 2019, Jim Popovitch via mailop wrote:
On April 29, 2019 3:46:03 AM UTC, John Levine via mailop
wrote:
Still waiting to hear when mailop.org adds its SPF record.
Didn't it take almost 2 years the last time we waited on mailop.org to fix a
cert?đ
The current web cert for the
On Tue, 30 Apr 2019, John Levine via mailop wrote:
I've been encouraging my users not to forward their mail, and if they want
to consolidate it at Gmail or Yahoo or whatever, set the other service up
to do POP retrieval. Works fine, at the cost of a slight delay in getting
some of the mail.
W
On Thu, 9 May 2019, Rob McEwen via mailop wrote:
The documents that Paul referenced in his last message -
probably mentioned this somewhere - but I'll add that (in
addition to the link above and doing confirmed-opt-in "COI")
you should strongly encourage your customers to
captcha-protect thei
On Thu, 27 Jun 2019, Benoit Panizzon via mailop wrote:
Hi List
Just wondering as I have come across this situation multiple times.
A domain includes an SPF entries which have different 'all' settings.
Which one is valid?
I would have guessed, that an 'include' should never contain the
'all' s
On Mon, 1 Jul 2019, Simplelists - Andrew Beverley via mailop wrote:
Dear all,
I'm after some general advice about moving to a new outbound email IP
address range.
We have a choice of either applying for a brand new range from RIPE
(which has presumably never been used before to send email), or
On Fri, 9 Aug 2019, Michelle Sullivan via mailop wrote:
Ken O'Driscoll via mailop wrote:
As per a discussion on a emailgeeks today, it seems that Firefox is
throwing up a CA not trusted security alert for visitors to https://
www.secure.sorbs.net
I can reproduce on Firefox but not Chrome.
A c
On Tue, 20 Aug 2019, William Astle via mailop wrote:
Can a live.fr email admin with access to actually do something contact me?
One of your users has been forwarding their email to my gmail account and
refuses to stop doing so. I can provide evidence of the email forwarding
(messages with full
On Thu, 22 Aug 2019, Michael Rathbun via mailop wrote:
In our experience, if you mail to addresses that haven't engaged (subscribe,
open, click) in the previous 90 to 180 days, there is a growing tendency for
your IPs/domains to be classified as spammaceous and dealt with appropriately.
You ca
On Sun, 18 Jun 2023, Alessandro Vesely via mailop wrote:
On Fri 16/Jun/2023 22:41:39 +0200 Gellner, Oliver via mailop wrote:
On 16.06.2023 at 16:13 Jaroslaw Rafa via mailop wrote:
[...]
So at least one (and important one, given the size of this mail service)
implementation of DMARC does not us
On Fri, 23 Jun 2023, Carsten Schiefner via mailop wrote:
Hi, Luke (& all) -
how about elaborating a bit further on the whats and whys of your setup?
Because at first sight it is indeed a bit hard to understand why SendGrid may
not be in a position to follow the RFCs and the thereof derived an
Please don't Cc: me, use only the list for replies, even
if the mailing list software screws up the Reply-To header.
___
mailop mailing list
mailop@mailop.org
https://list.mailop.org/listinfo/mailop
Please could you indicate who you are and,
if appro
On Wed, 12 Jul 2023, ml+mailop--- via mailop wrote:
On Wed, Jul 12, 2023, Andrew C Aitchison via mailop wrote:
Please could you indicate who you are and,
Why?
Sorry, I meant to ask for a name or an alias.
Why ?
Because I don't believe that "the paranoid curmudgeon from esmtp.or
On Wed, 12 Jul 2023, Michael Peddemors via mailop wrote:
And yes, email forwarding will break.. but email forwarding remotely should
be killed off anyways.. everyone can log into two accounts.
Universities would like to allow the world to contact staff who have
recently left. We forward paper
On Mon, 31 Jul 2023, Mike Hillyer via mailop wrote:
From: mailop On Behalf Of Taavi Eomäe via mailop
Does anyone here have any familiarity with antivirus/anti-phish
vendors that can or are meant to be used with email?
I've checked the rspamd external services page
(https://rspamd.com/doc/mod
On Wed, 30 Aug 2023, Ăngel via mailop wrote:
On 2023-08-24 at 14:29 -0400, postfix--- via mailop wrote:
(...)
Needless to say: I will avoid restaurants using OpenTable, whether
while visiting destinations or at home. If they cannot choose a
service provider that is respectful of my choices, t
On Fri, 15 Sep 2023, Damon Sauer via mailop wrote:
Good Morning!
Just an FYI to the mailop community,
We are warming up:
(in progress) 38.152.90.0/24 starting with 38.152.90.0/26
38.154.122.128/28
38.154.109.32/27
# whois 38.152.90.1
output includes:
NetRange: 38.152.0.0 - 38.152.127.2
On Fri, 29 Sep 2023, Philip Paeps via mailop wrote:
On 2023-09-28 03:13:27 (+0800), Mike Hillyer via mailop wrote:
Breaking news, Microsoft is pulling the trigger on DANE next year:
Implementing Inbound SMTP DANE with DNSSEC for Exchange Online Mail Flow
This is good news. Hopefully this wil
On Sat, 30 Sep 2023, Andrew C Aitchison wrote:
On Sat, 30 Sep 2023, Jay R. Ashworth via mailop wrote:
I haven't even heard exim *mentioned* in like 20 years; these stats can't
be right, can they?
https://www.bleepingcomputer.com/news/security/millions-of-exim-mail-servers-exposed-to-zero-day
On Sat, 30 Sep 2023, Jay R. Ashworth via mailop wrote:
I haven't even heard exim *mentioned* in like 20 years; these stats can't be
right, can they?
https://www.bleepingcomputer.com/news/security/millions-of-exim-mail-servers-exposed-to-zero-day-rce-attacks/
https://arstechnica.com/security/2
On Sat, 30 Sep 2023, Carsten Schiefner via mailop wrote:
Hi Simon,
On 30.09.2023 10:18, Simon Arlott via mailop wrote:
On 30/09/2023 08:50, Andrew C Aitchison via mailop wrote:
I see that there is an Exim release candidate out on test at the moment
https://lists.exim.org/lurker/message
On Tue, 3 Oct 2023, Faisal Misle via mailop wrote:
We noticed (and looks like so did our counterparts at Dmarcian) that
Google has not been sending DMARC reports since last week.
I haven't had a dmarc report from google since 25 Sept either,
but they did sent a tls report for 30 Sept.
--
Andr
On Thu, 5 Oct 2023, Bernardo Reino via mailop wrote:
On Thu, 5 Oct 2023, Slavko via mailop wrote:
DĹa 2. 10. o 18:34 Brandon Long via mailop napĂsal(a):
I've raised a bug to take a look, this looks like a too broad dkim replay
rule.
I am not sure if that is the same, but in last two days
On Mon, 9 Oct 2023, Simon Arlott via mailop wrote:
On 09/10/2023 07:44, Kirill Miazine via mailop wrote:
The reason for a long retry is that I have to manually decrypt mailstore
partition in case of server reboot. Exim would accept the message, but
defer delivery until the mount appears. I want
On Sun, 29 Oct 2023, pgnd via mailop wrote:
Is that domain the same as you post here from? I ask, because your
email was signed only by one key and you mentioned dualsign previously.
nope. _this_ is not sent from one of my own servers.
all my mails from all my servers are dual signed.
as sho
On Fri, 10 Nov 2023, Carsten Schiefner via mailop wrote:
Folks,
sort of triggered by Benoit's recent and absolutely
spot-hitting rant about Microsoft's inability resp.
unwillingness to appropriately deal with spam complaints, I
thought I should share this article:
Microsoft lays hands on l
On Sat, 11 Nov 2023, Bjoern Franke via mailop wrote:
Hi,
... I have not been aware of the fact that *ALL* apps actually might be
doing this.
It was just recently that I looked for alternative iOS mail apps - and
"phoning home" credentials got noted only for the Spark app.
This seems to be no
On Sat, 11 Nov 2023, Carsten Schiefner via mailop wrote:
Hi Andrew,
Am 11.11.2023 um 14:25 schrieb Andrew C Aitchison via mailop
:
ďťż[âŚ]
I guess we need to look at ClientID
https://datatracker.ietf.org/doc/draft-storey-smtp-client-id/ (SMTP)
https://datatracker.ietf.org/doc/draft-yu-imap
On Sun, 19 Nov 2023, Bill Cole via mailop wrote:
On 2023-11-19 at 06:59:37 UTC-0500 (Sun, 19 Nov 2023 12:59:37 +0100)
Alessandro Vesely via mailop
is rumored to have said:
I don't think someone can drop almost all mail and still call itself a mail
server.
Were you running a mail system in t
On Sun, 17 Dec 2023, Marco Moock via mailop wrote:
Am 16.12.2023 um 16:07:19 Uhr schrieb Jarland Donnell via mailop:
Obligatory: We don't intend to send any email their way that could be
perceived as unsolicited, but our users do use forwarders and we'll
never completely match their filters.
On Thu, 21 Dec 2023, John R Levine via mailop wrote:
On Thu 21/Dec/2023 10:37:52 +0100 John Levine via mailop wrote:
Yes, your code should handle them. No, that doesn't mean you should sign
with them.
Yup. The question was why Gmail doesn't /verify/ ed25519 signatures.
Answering that they
On Sat, 30 Dec 2023, Slavko via mailop wrote:
Hi,
recently i see messages from this ML rejected by my MTA, due
malformed To: header (from postmas...@inter-corporate.com):
To: mailop@mailop.org
AFAIK, the display name have to be quoted (@ char in it), thus
my MTA is right, but...
Please,
On Wed, 10 Jan 2024, Olga Fischer via mailop wrote:
Hi mailops,
I am new here because I want to collect some opinion.
Many bigger mailers are blogging about BIMI.
As far as I see its exclusively for brands.
It has 2 big barriers for entry:
- Expensive bespoke cert oids
- Registered trademark l
On Wed, 10 Jan 2024, Jaroslaw Rafa via mailop wrote:
As the OP has written, the only ones that may be interested in this may be
marketers. Nobody else needs any logos, avatars etc. displayed alongside the
email headers. There is a reason why the early attempt at this - I'm talking
about the X-Fa
[ Wearing an MTA developer's hat. ]
I see that an MTA is supposed to remove existing Authentication-Results
and BIMI-Indicator headers, and that generally an MUA may use these
headers if present.
I presume that most MTAs only add these headers on delivery, but if a
non-compliant MTA receive
On Sat, 13 Jan 2024, Benny Pedersen via mailop wrote:
Andrew C Aitchison via mailop skrev den 2024-01-13 07:16:
[ Wearing an MTA developer's hat. ]
+1
I see that an MTA is supposed to remove existing Authentication-Results and
BIMI-Indicator headers, and that generally an MUA may use
On Sun, 14 Jan 2024, Mark Alley via mailop wrote:
This is anecdotal, but I think it illustrates even at a
smaller scale the persistent problem Microsoft currently has
with their tenancy.
I did some quick perusal of the last month's data from our
email logs, and out of a total of 22,473 exter
On Thu, 1 Feb 2024, Scott Undercofler via mailop wrote:
I'm replying on list for visibility. The issue youâre seeing is
directly related to SMTP smuggling which was discussed on list ad
nauseam about a month ago. The servers at shaw are configured to
reject non-RFC bare linefeeds. Can you elabo
On Wed, 7 Feb 2024, Atro Tossavainen via mailop wrote:
Otherwise you need to stop using Spamhaus -- even if you sign-up,
perhaps because of the query volume, you still must query them
directly not via a public resolver.
This is not true.
One of the main points of DQS is that the DNS service y
On Sun, 11 Feb 2024, Sebastian Nielsen via mailop wrote:
because SPF is too easy to forge.)
Wrong. When a shared space is used, its up to that particular space,
to enforce so customers cannot use other customerâs email addresses.
Since some of these shared spaces have demonstrated that they
On Fri, 16 Feb 2024, Matt Palmer via mailop wrote:
On Wed, Feb 14, 2024 at 07:57:09AM +0100, Hans-Martin Mosner via mailop wrote:
Is there some way to identify the host IPs which are
used by those cloud servers, so one could block incoming SMTP from them if
Microsoft can't be bothered to
On Sat, 24 Feb 2024, Anne P. Mitchell, Esq. via mailop wrote:
Not to mention that Federal law requires a one-step unsubscribe method.
As I often seem to get challenged on this, here is the text of the law:
"§ 316.5 Prohibition on charging a fee or imposing other
requirements on recipients who
On Mon, 26 Feb 2024, Jaroslaw Rafa via mailop wrote:
Dnia 26.02.2024 o godz. 10:19:54 Kris Deugau via mailop pisze:
Also try getting your recipients to complain to their mail hosting
provider - complaints from the people who want to *receive* the
message are far more effective than complaints f
On Wed, 6 Mar 2024, John Levine via mailop wrote:
Right. I am aware of communities of EAI mail users in India and Thailand,
but not anywhere else. You might expect EAI users in China, but nope,
for reasons I can explain if anyone cares.
Everywhere else people use ASCII mail addresses, even th
https://discourse.ubuntu.com/t/noble-numbat-release-notes/39890#tls-10-11-and-dtls-10-are-forcefully-disabled-13
(which is mostly a template) suggests that TLS 1.0, 1.1 and DTLS 1.0 are
"forcefully disabled" in the upcoming Ubuntu release
(due next month at a guess).
Apparently this is not new
On Wed, 13 Mar 2024, Marco Moock via mailop wrote:
Am 13.03.2024 um 10:43:27 Uhr schrieb Bill Cole via mailop:
Without one, disabling them is a cargo-cult praxis that is worse than
any false sense of security provided to oblivious peers who can't do
TLSv1.2 or better.
What are legitimate re
On Thu, 14 Mar 2024, Marco Moock via mailop wrote:
Am 14.03.2024 schrieb Cyril - ImprovMX via mailop :
But in my opinion, moving the needle upward by not accepting
deprecated versions would force those users to be compliant and
improve the general security.
Most of them will simply fall back
On Thu, 14 Mar 2024, Johann Klasek via mailop wrote:
On Thu, Mar 14, 2024 at 12:03:46PM +0100, Marco Moock via mailop wrote:
Am 14.03.2024 schrieb Julian Bradfield via mailop :
On 2024-03-14, Marco Moock via mailop wrote:
sendmail tried to deliver it 20 times during the night - this
morning
On Sat, 16 Mar 2024, Gellner, Oliver via mailop wrote:
Depending on the kind of changes which have been applied to the
message you can reverse the transformations and verify the original
DKIM signatures. A member of this list developed a software to do
this programmatically.
Where can I learn
On Wed, 17 Apr 2024, Bruno FlĂźckiger via mailop wrote:
What sort of shortcomings do you see for, say, Proxmox? I would say
that by using Open vSwitch & Free Range Routing (with EVPN), one can
get pretty close to the VMware NSX. And with enabling Ceph on Proxmox,
one can get the VSan-like fun
On Thu, 25 Apr 2024, Paul Menzel via mailop wrote:
Dear mail operators,
Until now we rejected emails from donotre...@invoices.premierinn.de
2024-04-23.log:2024-04-23 17:48:53 194.95.238.12 <22>Apr 23 17:48:53
mgw6-erl postfix/smtpd[744016]: NOQUEUE: reject: RCPT from
fra-smtp2.oracleindu
but not any record addresses ?
TonyFinch> Too late for that by about 10 years, I'm afraid.
Looks like that dream is getting further away :-(
We wont will that fight if we don't push for it.
On 25.04.24 14:59, Andrew C Aitchison via mailop wrote:
Should someone here not know, RFC 7
On Sat, 4 May 2024, Alessandro Vesely via mailop wrote:
The last URL in the response says something about ARC:
ARC checks the previous authentication status of forwarded messages.
If a forwarded message passes SPF or DKIM authentication, but ARC
shows it previously failed authenticati
On Fri, 17 May 2024, Taavi Eomäe via mailop wrote:
As part of coordinated disclosure, I am sharing it here as well. In short,
using the approach described below, attackers can replace the entire contents
of a letter, in a way the letters still pass DKIMâs cryptographic checks.
This also means
On Tue, 21 May 2024, Mark E. Jeftovic via mailop wrote:
The only difference between messages that get through vs ones that are
rejected (same message) is whether we send to the Yahoo email box directly,
or else via an email forward (which has SRS enabled, and optionally SPF and
even minimal DM
[ Also sent to draft-brand-indicators-for-message-identificat...@ietf.org ]
https://datatracker.ietf.org/doc/draft-brand-indicators-for-message-identification/05/
7.8. Handle Existing BIMI-Location and BIMI-Indicator Headers
says:
If the original email message had a DKIM signature, it has a
On Thu, 27 Jun 2024, Mark E. Jeftovic via mailop wrote:
Been debugging an email forwarding problem, it's basically that
the forwarder doesn't use SRS or ARC
That would be an SPF fail, but the sender domains are ~all
Why the hard bounce?
* Sender address: ~all
* The forwarded address has -all
On Tue, 9 Jul 2024, Andy Beverley via mailop wrote:
On 09/07/2024 03:17, Philip Paeps via mailop wrote:
I've had a VM at Mythic Beasts doing mail for several years. They're
rock solid and all my interactions with them have been very positive.Â
I don't have any stake in them other than as a h
On Wed, 10 Jul 2024, Brandon Long via mailop wrote:
Better case would be to automatically discover that a TLD is bad but also
provide for the possibility that a given domain in the TLD is fine using a
reputation based system.
Of course, then there's the "automatically know what the TLD is" prob
On Mon, 15 Jul 2024, Marco Moock via mailop wrote:
Am 15.07.2024 um 14:48:01 Uhr schrieb John Levine via mailop:
Sendmail is actively maintained and works fine, but configuring it
is hard and the documentation is a 30 year stream of consciousness.
The m4 macros are a bit tricky, but all poss
On Tue, 16 Jul 2024, Taavi Eomäe via mailop wrote:
It should be noted that both Stalwart and Maddy on that list are very new.
Stalwart especially so, it hasn't even reached version 1.x yet,
...
Those who have been here for decades may remember that
when someone said that about exim (c
On Wed, 17 Jul 2024, postfix--- via mailop wrote:
On 2024-07-16 14:36, Bjoern Franke via mailop wrote:
Which iPhone / Android clients do you mean?
last time I tested Apple Mail, my IMAP server logged requests from
Apple's network.
On Android, I do not use Gmail. I use a client that pulls
On Thu, 25 Jul 2024, Daniel K. via mailop wrote:
We feed received DMARC reports through Open-Report-Parser and visualize
with Open DMARC Analyzer.
Sometimes the ingestion step fails, because we receive aggregate DMARC
reports with invalid contents. Particularly from senders that seem to
have ju
On Wed, 30 Jul 2024, John Levine via mailop wrote:
It appears that Jaren Angerbauer via mailop said:
$dayjob is Proofpoint -- I have been heavily involved with this. We have
gone to great lengths to raise awareness with customers and get them to
correctly configure their systems. Ultimately
On Sun, 14 Jul 2024, Scott Q. via mailop wrote:
My question wasn't geared in that direction. It's up to each
provider to create their own custom interfaces for integrating all
that. It's not rocket science.
My question was geared towards the clients used to access mail.
Outlook uses hardcoded
On Tue, 16 Jul 2024, Sidsel Jensen via mailop wrote:
Hi Andreas
We have some documentation here:
https://documentation.open-xchange.com/8/middleware/mail/dovecot/oauth_2.0_with_postfix_and_dovecot.html
but a good HowTo sounds like a really good idea, to further the
adoption. If you need help l
On Tue, 27 Aug 2024, Colin Johnston via mailop wrote:
Have you tried an normal android phone without a sim as Google should send
the 2fa to that as well as sms ?
How would she add the phone to the account *without* the one-time
key she wishes to receive ?
--
Andrew C. Aitchison
On Sat, 28 Sep 2019, Tom Ivar Helbekkmo via mailop wrote:
_dmarc.google.com IN TXT "v=DMARC1; p=reject;
rua=mailto:mailauth-repo...@google.com";
: host aspmx.l.google.com[173.194.73.26] said:
550-5.2.1 The user you are trying to contact is receiving mail at a rate
that 550-5.2.1 prevents
On Mon, 7 Oct 2019, Jaroslaw Rafa via mailop wrote:
Dnia 7.10.2019 o godz. 14:18:52 Mathieu Bourdin via mailop pisze:
Weel, basically your issue can be summarized in one word: reputation.
Welcome to email deliverability 101 ;)
And in what way this helps anything?
Do you want to say "you s
On Wed, 20 Nov 2019, Matt Vernhout via mailop wrote:
If a sender asked you to reject that mail with their policy do them
a favour and send a bounce that says something like âÂÂyour DMARC said
to bounce failed messages, if this is wrong fix your authentication
and try againâÂÂ
One of the
teve
Oh...And I'm certain Google also sent a DMARC report :P
On Thu, Nov 21, 2019 at 4:34 AM Andrew C Aitchison via mailop <
mailop@mailop.org> wrote:
On Wed, 20 Nov 2019, Matt Vernhout via mailop wrote:
If a sender asked you to reject that mail with their policy do them
a favou
On Mon, 9 Dec 2019, Maarten Oelering via mailop wrote:
Multipart messages with html and text alternatives are generally
considered best practice. Senders with html templates should add a
text version is the common believe.
But it's almost 2020, and we were wondering if there's still a good
reas
On Tue, 17 Dec 2019, Philip Paeps via mailop wrote:
On 2019-12-17 03:20:04 (+0800), Al Iverson via mailop wrote:
Google is announcing that in the future, G-Suite accounts will not support
LSA (Less Secure Access) account connection functionality. This will put
an end to accessing your Gmail a
On Tue, 17 Dec 2019, Andrew C Aitchison via mailop wrote:
On Tue, 17 Dec 2019, Philip Paeps via mailop wrote:
On 2019-12-17 03:20:04 (+0800), Al Iverson via mailop wrote:
Google is announcing that in the future, G-Suite accounts will not support
LSA (Less Secure Access) account connection
On Wed, 18 Dec 2019, Brian via mailop wrote:
I never had any significant deliverability issues with my personal low
volume email server before, which I have been running for several years
following pretty much all the well-known recommendations and standards.
Two months ago I decided to take so
On Thu, 23 Jan 2020, Michael Peddemors via mailop wrote:
But it is helpful, whether sending or receiving, to see if the address is in
your contacts (known person) or not..
But we see a lot of changes coming on that front, just overheard some
Thunderbird developers working on, and I know our t
On Sun, 26 Jan 2020, Jaroslaw Rafa via mailop wrote:
Similar thing happened to me recently when I wanted to re-login to one of
those test accounts from my home computer, but I installed a new browser
which was not yet used with that account. Usually there are no problems in
such a case, but my h
unlock my phone (that may be
unrealistic) if we have eliminated passwords then they have access
to all my data stored anywhere.
On Sun, 26 Jan 2020, Brandon Long wrote:
On Sun, Jan 26, 2020 at 10:35 AM Andrew C Aitchison via mailop <
mailop@mailop.org> wrote:
Hmm.
Proving that you can read
On Sun, 2 Feb 2020, Matthias Leisi via mailop wrote:
At dnswl.org, we collect (DNS) logs to identify abusers of our
service. During last week, the logs increased by a factor of 10
(usually this is pretty stable, going up an down a few percents), so
we thought weâÂÂd investigate. And we found som
On Wed, 12 Feb 2020, Scott Mutter via mailop wrote:
Look, I understand it's a thin line battling spam and abusive
behavior from mail servers. I've pleaded with many blacklist
operators to give me details as to why they are blacklisting one of
our servers. I can probably count on 1 hand how ma
I thought DKIM was supposed to flag such messages;
do these phishing emails satisfy DKIM ?
On Tue, 18 Feb 2020, Benoit Panizzon via mailop wrote:
Hi List
Lately, our customers are getting an increased amount of phishing
emails, or emails containing malware with legit looking From: headers
fro
On 12/02/2020 16:47, Andrew C Aitchison via mailop wrote:
Does this fly, or am I missing something critical ?
If you block for content or black-listed host and there is a DMARC
reporting address report the appropriate details to the DMARC
reporting address(es) ?
OK, I haven't thought th
On Fri, 21 Feb 2020, Alessandro Vesely via mailop wrote:
I'm still puzzled by that Emerald Onion Repeat Infringer
Termination Policy.
Perhaps, they have a real time incident reporting system
to catch miscreants.
I assumed it was what they want to do, not what they can do.
If it isn't in the p
On Mon, 9 Mar 2020, Stefan Bauer via mailop wrote:
Any ewetel postmaster around? One of our IPs (subject) get flagged
as dynamic during delivery to ewetel. However this IP is static.
I am not surprised that Ewetel has guessed wrong:
whois 116.203.31.6 -h whois.ripe.net
gives a /16 belo
On Sun, 22 Mar 2020, Steve Freegard via mailop wrote:
This data is inherently noisy and I've gone to extreme lengths
to remove as much noise as possible and provide Abuse
Desks/Postmasters some visibility that they do not currently
have.
Whilst this time it's reported an alias, next time it
On Thu, 30 Apr 2020, Michael Peddemors via mailop wrote:
Just another update, on what our spam auditing team
is seeing as trends
...
* o265 leakage
Have they lost a century ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.
On Wed, 6 May 2020, Andy Smith via mailop wrote:
Hello,
On Tue, May 05, 2020 at 02:50:39PM -0700, Carl Byington via mailop wrote:
It is bad enough that our local spamassassin rules add 5 points if the
message is dkim signed by sendgrid.net.
Same here and it's extra frustrating because there
On Tue, 19 May 2020, Thomas Walter via mailop wrote:
On 19.05.20 12:01, Jaroslaw Rafa via mailop wrote:
There are no practical scenarios that justify the existence and use of
shared accounts.
Use a mailing list instead.
And multiply each and every mail to multiple people, making it difficult
On Mon, 25 May 2020, Daniele Nicolodi via mailop wrote:
Hello,
sorry for the slight OT.
I have an email account with an organization that uses Office365 for
their email. I recently received a email stating that they will be
phasing out "basic authentication" and that "modern authentication" wi
On Thu, 28 May 2020, Daniele Nicolodi asked:
The IT department of the organization that is pushing thins says that
modern authentication and disabling IMAP (over SSL) enhance security.
I don't see how this is the case. Does anyone have an opinion?
Phil Pennock replied:
PP> As to IMAP/TLS -- I
On Thu, 4 Jun 2020, BenoĂÂŽt Panizzon via mailop wrote:
[ Not replying to the list as this may be off topic,
but you are welcome to bring it back on list if you wish. ]
Hi Gang
Tanks for the various feedback, learning a log :-) I found one issue
caused by domain alignment in DMARC.
Looking
On Thu, 4 Jun 2020, Daniele Nicolodi via mailop wrote:
On 02/06/2020 02:41, Andrew C Aitchison via mailop wrote:
On Thu, 28 May 2020, Daniele Nicolodi asked:
The IT department of the organization that is pushing thins says that
modern authentication and disabling IMAP (over SSL) enhance
On Fri, 5 Jun 2020, Brandon Long via mailop wrote:
The weird thing to me is that I thought O365 and outlook.com already
supported OAUTHBEARER (or equivalent).
https://docs.microsoft.com/en-us/exchange/client-developer/legacy-protocols/how-to-authenticate-an-imap-pop-smtp-application-by-using-oa
On Wed, 10 Jun 2020, Scott Mutter via mailop wrote:
This IP address - 191.101.16.96 - is a shared hosting server. Shared
Hosting, if you're not familiar with it, takes a server and hosts many
different websites across different VirtualHosts (with the glorification of
HTTP v1.1 and SNI). And a
On Thu, 18 Jun 2020, Andreas Bueggeln - NOC - Profihost AG via mailop wrote:
Hello,
we host hundreds of dedicated servers on VMs and our customers send
thousands of mail to t-online.de mailboxes every day.
a new customer uses an ip, which has been offline for months or even
years wanted to sen
On Tue, 30 Jun 2020, Michael Peddemors via mailop wrote:
* Stop promoting DNS over HTTPS as a good thing.. ;)
Care to elaborate ?
--
Andrew C. Aitchison Kendal, UK
and...@aitchison.me.uk
On Sun, 5 Jul 2020, Chris Lewis via mailop wrote:
On 2020-07-05 15:19, Jay R. Ashworth via mailop wrote:
An argument I could tolerate -- corporate IT types can be expected to
diagnose
smartly enough to deal with it... though it will still make things more
difficult for them.
Impossible for
Executive summary:
DoH is intended to reset the balance of control and data collection
from ISPs, system and network administrators towards (browser) users.
On Mon, 6 Jul 2020, Michael Peddemors via mailop wrote:
One thing not mentioned so far in this thread, is data collection..
While many D
On Tue, 7 Jul 2020, Noel Butler via mailop wrote:
On 07/07/2020 01:01, Johann Klasek via mailop wrote:
I have been told that DoH is set into place to solve the privacy
problem. On a small DNS workgroup meeting I saw a presentation on how
they statistically identify users by their DNS traffic,
On Fri, 10 Jul 2020, Matt Corallo via mailop wrote:
For various reasons, DKIM's non-repudiation property has always
prevented us deploying DKIM signing on our mail. The obvious fix for
this is to roll DKIM keys aggressively (eg every few minutes) and
publish the private keys for revoked keys as
Does anyone have (a pointer to) figures for the comparative use
of "traditional" MUAs (IMAP, POP) and webmail - both generic
and email-service-supplied ?
When I first heard about BIMI I assumed it was aimed at
email-service-supplied webmail - I imagine mutt or alpine users
would be turned *off
1 - 100 of 238 matches
Mail list logo
