I recently published a DMARC record with my domain to try and improve my email delivery to gmail. Everything seems to be going according to plan, except that I am receiving reports from strange places like qq.com and italiaonline.it.
I didn't expect to get reports from places like these and I was wondering if this is normal and acceptable, or if I should avoid unzipping these reports. Thanks for any help!
That's what happens, DMARC shows what places may be spoofing using your email addresses.
In your report, if the IP listed is not your IP, then most likely it's someone spoofing with your email addresses. If it's your IP then either you sent emails to those places or someone has access to your SMTP and is sending mail through it without your knowledge.
Those reports you are getting has all the information in it and they are generally save to open up. If you take a look here you'll see some of the places you'll get DMARC REPORTS from.
I can confirm I got reports from mailauth-reports#qq.com but I haven't got one from italiaonline.it yet.
If you want a friendly way to parse the reports try DMARCIAN
Related
I'm using my own email server to send and receive my emails. Therefor I've set up a VPS at Tilaa.com which also acts as my webserver.
On the webserver I have DirectAdmin setup which takes care of my administrative things.
The problem is that I can receive and send emails but Outlook, Live and Hotmail refuse the receive any emails coming from my email server. Gmail does work f.e. ( Not even in junk folders )
When the receiver at Outlook/live or hotmail adds my email address to the safe list, emails do get through.
My domain is virtualfarmingworld.com
What I have done?
- Setup SPF record
- Setup DKIM record
- Setup A record mail.virtualfarmingworld.com to server IP 84.22.113.42
http://mxtoolbox.com/SuperTool.aspx?action=mx%3avirtualfarmingworld.com&run=toolpage#
Does anyone have any ideas?
Regards,
Ciryk Popeye
Ciryk,
Hotmail can be a bit tricky, if it's being blocked completely. Then most likely your IP is on their internal blacklist. If it's showing up in their SPAM folder it can be a number of reason. The headers from the email in Hotmail will tell you why it's in the SPAM folder.
Look for SRV:<value> PCL: <Value> and SCL: <Value>
PCL stands for Phising Confidence Level and SCL stands for Spam Confidence Level.
You should run your email through this Mail Tester, it really does point out a lot of issues. It may or may not solve the hotmail issue, but they have this inbox tester their that really awesome that will show you other places you're having issues mailing to. Keep in mind, the previous owner of the IP might of spammed from it and caused issues.
I also notice by helping a lot of people that after signing up to Microsoft Junk Mail Reporting System, wait a few days and then delivery results are better with hotmail. I did a scan on you IP and I think you did that already signed up?
You're also on this blacklist: http://www.dnsblchile.org/
Which is really easy to get off, normally takes a couple of hours after you filled out the form.
I've searched all around, made several changes over the past two weeks, and still no luck so here I am.
We just put up a new site, and there are 3 different forms. Each form sends to a different email of theirs, a forwarder that sends to the same email of theirs (I had to make this after I figured out there was a problem with them not receiving emails from the website), and one of our emails.
Currently, they use office 365 for their email. A few days ago I figured out to change the SPF record, so I added the IP of their current website.
Here is the current SPF record:
v=spf1 include:spf.protection.outlook.com ip4:23.229.157.193 a ~all
I'm stumped. I've sent test submissions, and they receive the forward, and I receive it from my email, but the email that it's supposed to be sent to doesn't receive it.
I don't have access to their office 365 account. I tried a different option of sending the emails through swiftmailer, but GoDaddy doesn't allow me to connect to their smtp details, so that's a bust.
Has anyone encountered this problem before and know of a solution? All help is greatly appreciated.
THE SOLUTION:
After hours of calling, I was able to get the problem solved. I should have edited this earlier, but better late than never. In cPanel, there is an area for routing mail. It was set to local, rather than remote. Every email that came through went to the local emails, and since their were none, they were discarded. After changing the option to remote, the emails started flowing through. After the 3rd or 4th call, I reached someone who's actually dealt with this problem because he explained what was happening and the fix in under two minutes, unlike the others. I hope this helps anyone in the future with the same problems I encountered.
If you've configured SPF on your sending smtp server, you can configure a _dmarc
DNS record with an email address for the receiving server to send mail reports to...
Better yet, if this 'new' server is not required to be fully operational while you set up everything - you can set the _dmarc record to tell the receiving server to reject anything that doesn't pass the SPF test.
In any case, if you are setting up an email server that will send messages to any outside Internet address, and you have the ability to install software on the server - you should install and configure:
SPF, DKIM, and have a dmarc DNS record.
If you don't have these items, it's very likely much of your site's notification email will end up in the subscribers' spam box, or worse rejected by the receiving server.
Several good websites that have helped me:
unlocktheinbox.com
dmarcian.com
emailsecuritygrader
protodave.com dkim key checker
appmaildev.com domainkeys test
gettingemaildelivered.com
Okay, so this is a really weird issue that's really just confusing the crap out of me...
I have a number ColdFusion sites running on the same dedicated server and have been noticing some really strange issues with mail sent from some sites using the <cfmail> tag.
Here is an example of a mail tag being used with a form on one of the websites:
<cfmail to="#cfmail.clientEmail#" from="#form.email# <#form.email#>" replyto="#form.email#" server="#cfmail.server#" username="#cfmail.username#" password="#cfmail.password#" subject="Request for info - #form.propertyName#" type="HTML" port="#cfmail.port#" useSSL="#cfmail.useSSL#">
(All of the cfmail scoped vars are being set in the Application file)
I do it this way so that the individual sites are not all using the in-house mail server, and instead use their own Google Apps account (DNS is set up properly).
Form submits, email sends, email is delivered...no problem, right?
Well...that's when things get funky.
Notice the FROM looks like this in the code:
from="#form.email# <#form.email#>
When delivered, it looks like this:
FROM : bob#someaddress.com <info#somerandomdomain.com>
When it SHOULD look like this:
FROM : bob#someaddress.com <bob#someaddress.com>
So, I checked - and re-checked the code. Everything is correct. Then, I checked the ColdFusion mail spooler...the text file generated there before the email actually leaves the server is CORRECT.
This leads me to believe that something is happening after the actual data reaches the google servers - somehow the email addresses are getting swapped out.
If it's any help, the mixed up from addresses are always email addresses that were set up a long time ago and then closed/abandoned for other sites I host on the same server.
And, another bit of funkyness to add...
This is happening to the TO addresses in some cases as well. Meaning, emails sent from different sites on the same server (using different Google Apps accounts and credentials) are ending up in the correct inbox AND other, unrelated, sites inboxes as well.
I've determined that the emails are correct as they leave the building on their way to Google (via the ColdFusion mail spooler) - but things seem to go all wonky after that.
Does anyone have any advice on this? The solution I've decided on for now is to move the clients to new mail providers...but this is not an ideal solution because of all the hassle involved in migrating their email over.
I have an unusual problem for a project I'm working on - I need to receive spam. Does anyone know how to get on a spammers email list?
For the curious - I'm interested to know if applying reverse dns and SPF on an email server actually blocks spam and/or ham so I've written a smtp server that will check them. I just need to be spammed.
Search for "Enter email to win" in your favorite search engine and enter your email.
And who knows, besides getting spam, you might also win something :)
edit:
Also make sure, that mail server which you are using is not doing any spam filtering already.
The "public" address for our company gets tonnes of spam each day without filtering.
Come to think of it, you could also set up a dummy web page with the email address for spam on it and get it indexed by search engines. This is how we get spam. Although we are not specifically looking for it.
One way is to put your email address on as many forums as you can. Like this:
stevej#exegro.info
kjones#exegro.info
clane#exegro.info
nadav.kozlovsky#exegro.info
SKL#exegro.info
glenn#exegro.info
robn#exegro.info
Spammer are sure to pick this up.
Having problems with setting up my website to use MS Exchange to send emails. I dont want to use the hosts email system.
The MS Exhange has been set up, with email addresses created.
My webpages are using Persits.MailSender which the host supports.
Do i need to change MX records? A records?
Sorry, im not clued up with network side of things, any help would be appreciated
When i email direct, the email address on the exchange picks up the emails. BUT if i email through the website, it goes to the annoying webmail the host is provinding, and not to the exchange
I find this strange, the same email address receiving emails at different places!
Im using ASP, and I have a website set up, which has been sending emails for the last 12 months, the host has messed up (again) somewhere, but doesnt know what is wrong (as usual)
There are no errors, the email always gets sent.... but to the wrong place.
I would look into actually trapping and knowing your errors. That way you can see precisely why it fails and have something to work with. As it stands, your question isn't really answerable. No language nor framework is provided. We don't know if the mail server is confirmed to be working or accessible outside your netowrk; we don't know how your are referencing it or if you are passing user credentials; we don't know what error you're getting...
At this point, you're not debugging, you're just sort of swinging in the dark. Find the point of failure and then research that data point to get a solution. Debug, catch errors, log, step through your code. All good ideas.
Ok i figured it out, I deleted the mail domain on the host as that was the first place the website looks to send an email. Once the mail domain was deleted the emails were sent to the external hosted mailserver MS Exchange email address. Yay!