Re: Prevent sender address spoofing

On Sep 29, 2019, at 6:52 PM, lists wrote: > Port 465 was deprecated for email. Port 465 is defined in RFC 8314 > Port 587 is the way to go. Either one works, and they are a little different. 587 uses STARTTLS to begin the encrypting and therefore require

Re: Prevent sender address spoofing

On Mon, Sep 30, 2019 at 03:03:23AM +0200, Benny Pedersen wrote: > lists skrev den 2019-09-30 02:52: > > Port 465 was deprecated for email. Port 587 is the way to go. > > this is false info Only in part. Though Port 465 was reinstated by a recent RFC, there's nothing wrong with 587, and it is mo

Re: Prevent sender address spoofing

lists skrev den 2019-09-30 02:52: Port 465 was deprecated for email. Port 587 is the way to go. this is false info

Re: Prevent sender address spoofing

Hugo Florentino skrev den 2019-09-30 02:04: Suppose ISP imposes restrictions so the only port open either for SMTP or submission must be TCP 25. What then? then use gmail, that isp is clueless if thats the case of blocking mua client ports, i have only seen port 25 been blocked from dynamic i

Re: Sending mail to Gmail users via Gmail server?

On Mon, Sep 30, 2019 at 01:44:29AM +0200, Jaroslaw Rafa wrote: > Dnia 29.09.2019 o godz. 17:33:53 Viktor Dukhovni pisze: > > > > http://www.postfix.org/socketmap_table.5.html > > I know very little about socket programming. Is there some kind of readily- > available "wrapper" around eg. shel

Re: Prevent sender address spoofing

Port 465 was deprecated for email. Port 587 is the way to go. The only email port I don't firewall on my server is 25. On the rest of the email ports, I block all countries that I don't visit. In addition I use my 40k worth of CIDRs that from hosting companies, VSPs, etc. that have hacked my w

Re: Prevent sender address spoofing

El vie, 27-09-2019 a las 09:33 -0400, Bill Cole escribió: > [...] > > Because, as documented, header_checks (and the other built-in > content > filtering in Postfix) does not support restrictions or restriction > classes as results of a pattern match. > > Allow me to pose a slightly different

Re: Prevent sender address spoofing

On 9/29/19 8:04 PM, Hugo Florentino wrote: > El vie, 27-09-2019 a las 12:22 -0400, Viktor Dukhovni escribió: >> [...] >> >> This makes no sense. Portable devices use ports 587 or 465 with all >> the other providers. And there's no "change ports constantly", they >> just use the same submission po

Re: Prevent sender address spoofing

El sáb, 28-09-2019 a las 11:38 -0600, @lbutlr escribió: > On Sep 27, 2019, at 9:33 AM, Hugo Florentino > [...] > > There is no changing ports constantly, or at all for that matter. > > There are experts here with decades of experience telling you not to > use port 25 for submission. Listen to t

Re: Prevent sender address spoofing

El vie, 27-09-2019 a las 12:22 -0400, Viktor Dukhovni escribió: > [...] > > This makes no sense. Portable devices use ports 587 or 465 with all > the other providers. And there's no "change ports constantly", they > just use the same submission port. > > Remote MTAs connect to port 25, submissi

Re: Sending mail to Gmail users via Gmail server?

Dnia 29.09.2019 o godz. 17:33:53 Viktor Dukhovni pisze: > > http://www.postfix.org/socketmap_table.5.html I know very little about socket programming. Is there some kind of readily- available "wrapper" around eg. shell script (or anything other that reads from stdin and writes to stdout) that

Re: Sending mail to Gmail users via Gmail server?

On Sun, Sep 29, 2019 at 05:33:53PM -0400, Viktor Dukhovni wrote: > Reliably detecting a Google-operated SMTP server may be non-trivial. That said, the Google SMTP server certificate does provide a crib for the popular names (resorted): posttls-finger: alt1.gmr-smtp-in.l.google.com[2a00:1450:

Re: Sending mail to Gmail users via Gmail server?

On Sun, Sep 29, 2019 at 09:50:12PM +0200, Jaroslaw Rafa wrote: > Is it possible to somehow use a script in place of the lookup table for > transport_maps ? Thus I could write a script that checks the MX and returns > the appropriate result. http://www.postfix.org/socketmap_table.5.html > > T

Re: Suggestions for submission protection

On 22 Sep 2019, at 18:50, Daniel Miller wrote: On 9/22/2019 12:59 PM, Bill Cole wrote: [...] If you do use a manual local blacklist for this (as I do on my personal system) it is most useful to apply it at the network level: either in your router/firewall or in a host-local packet filter (e.

Re: Sending mail to Gmail users via Gmail server?

Dnia 29.09.2019 o godz. 13:30:38 Wietse Venema pisze: > > There are two places where Postfix can do MX lookups for a remote > recipient: > > - In the SMTP client. > > - In the SMTP server (check_recipient_mx_access). > > You can use check_recipient_mx_access to return 'filter:gmail-submission'

Re: Sending mail to Gmail users via Gmail server?

Dnia 29.09.2019 o godz. 13:21:53 Viktor Dukhovni pisze: > > The trouble is that such accounts are generally restricted to a > single envelope sender address, likely with a matching single "From" > address. You can define in Gmail account settings alternate sender addresses that this account is al

Re: Sending mail to Gmail users via Gmail server?

Jaroslaw Rafa: > Hello, > as Gmail is often putting e-mails from me into recipients' Spam folder, and > there seems to be no solution for this (I tried everything to no avail), I'm > considering an idea of sending e-mail to Gmail users via Gmail server, with > help of a Gmail account specially crea

Re: Sending mail to Gmail users via Gmail server?

On Sun, Sep 29, 2019 at 06:16:05PM +0200, Jaroslaw Rafa wrote: > I'm considering an idea of sending e-mail to Gmail users via Gmail server, > with > help of a Gmail account specially created for that purpose. (If that doesn't > help then - I guess - nothing helps :( ). The trouble is that such a

Sending mail to Gmail users via Gmail server?

Hello, as Gmail is often putting e-mails from me into recipients' Spam folder, and there seems to be no solution for this (I tried everything to no avail), I'm considering an idea of sending e-mail to Gmail users via Gmail server, with help of a Gmail account specially created for that purpose. (If