View previous topic :: View next topic |
Author |
Message |
kal Forum Administrator
Joined: 06 Mar 2006 Posts: 17860 Location: Ottawa, Canada
TV/Projector: JVC DLA-NZ7
|
Link Posted: Wed Jul 29, 2009 1:42 pm Post subject: HELP! Many mail servers has blacklisted CurtPalme.com ! |
|
|
Well this sucks. Normally I wake up to around 100+ emails in my hotmail account from overnight as I get copies of all emails to sent anything @curtpalme.com. This morning I had 3. So I knew something was up....
It would seem that Hotmail (and possibly others) have blacklisted curtpalme.com. All mail sent from curtpalme.com is being rejected by Hotmail (and possibly others). Ack! This is not good.
Here's an example where the email HomeTheaterExperts@curtpalme.com is simply a forwarder to 3 or 4 different accounts including my kal_______@hotmail.com account:
Quote: | __________________________________
The original message was received at Tue, 28 Jul 2009 20:48:48 -0500
from web88107.mail.re2.yahoo.com [206.190.37.208]
----- The following addresses had permanent fatal errors -----
kal_______@hotmail.com
(reason: 550 OU-001 Mail rejected by Windows Live Hotmail for policy reasons. Reasons for rejection may be re...l/network admins, please visit http://postmaster.live.com for email delivery information and support)
(expanded from: <HomeTheaterExperts@curtpalme.com>)
----- Transcript of session follows -----
... while talking to mx3.hotmail.com.:
>>> MAIL From:<jeremy@curtpalme.com> SIZE=10385
<<< 550 OU-001 Mail rejected by Windows Live Hotmail for policy reasons. Reasons for rejection may be related to content with spam-like characteristics or IP/domain reputation problems. If you are not an email/network admin please contact your E-mail/Internet Service Provider for help. Email/network admins, please visit http://postmaster.live.com for email delivery information and support
554 5.0.0 Service unavailable
__________________________________ |
I'll visit http://postmaster.live.com to see what I can do... any hints guys?
Kal
_________________
Support our site by using our affiliate links. We thank you!
My basement/HT/bar/brewery build 2.0
Last edited by kal on Wed Jul 29, 2009 8:03 pm; edited 2 times in total
|
|
Back to top |
|
|
Kiev Savoie
Joined: 25 Oct 2007 Posts: 432
|
Link Posted: Wed Jul 29, 2009 1:57 pm Post subject: |
|
|
I knew something was going on! my hotmail account stopped accepting them about two weeks ago.
|
|
Back to top |
|
|
kal Forum Administrator
Joined: 06 Mar 2006 Posts: 17860 Location: Ottawa, Canada
TV/Projector: JVC DLA-NZ7
|
Link Posted: Wed Jul 29, 2009 3:10 pm Post subject: |
|
|
No, this has only been going on for about 5 hours now.
Some more information. Looks like just about every automatic spam filter in the world's probably blocking us now.
Here are some examples:
http://cbl.abuseat.org
IP Address XXX.XXX.XX.X is currently listed in the CBL.
It was detected at 2009-07-29 10:00 GMT (+/- 30 minutes), approximately 5 hours, 30 minutes ago.
ATTENTION: At the time of detection, this IP was infected with, or NATting for a computer infected with a high volume spam sending trojan - it is participating or facilitating a botnet sending spam or spreading virus/spam trojans.
http://www.us.sorbs.net
Address and Port: XXX.XXX.XX.X
Record Created: Tue Jul 28 05:34:33 2009 GMT
Record Updated: Tue Jul 28 16:07:06 2009 GMT
Additional Information: Spam Sending Trojan or Proxy attempted to send mail from/to from=<playboy116@aol.com> to=<doyle@paticipating.domain> proto=smtp helo=<sded4.atcihosting.com>
Currently active and flagged to be published in DNS
If you wish to request a delisting please do so through the Support System.
Crap!
Kal
_________________
Support our site by using our affiliate links. We thank you!
My basement/HT/bar/brewery build 2.0
|
|
Back to top |
|
|
AnalogRocks Forum Moderator
Joined: 08 Mar 2006 Posts: 26690 Location: Toronto, Ontario, Canada
TV/Projector: Sony 1252Q, AMPRO 4000G
|
Link Posted: Wed Jul 29, 2009 3:12 pm Post subject: |
|
|
Ohh boy...how do we get around this one?
_________________ Tech support for nothing
CRT.
HD done right!
|
|
Back to top |
|
|
Kiev Savoie
Joined: 25 Oct 2007 Posts: 432
|
Link Posted: Wed Jul 29, 2009 3:16 pm Post subject: |
|
|
so if it hasn't already, this trend will likely take hold on other email services as well?
|
|
Back to top |
|
|
kal Forum Administrator
Joined: 06 Mar 2006 Posts: 17860 Location: Ottawa, Canada
TV/Projector: JVC DLA-NZ7
|
|
Back to top |
|
|
Curt Palme CRT Tech
Joined: 08 Mar 2006 Posts: 24303 Location: Langley, BC
TV/Projector: All of them!
|
Link Posted: Wed Jul 29, 2009 3:29 pm Post subject: |
|
|
Looks like hotmail went on a rampage. I don't get Facebook updates to my hotmail account either, that happened about 2 weeks ago. I thought it was something that Facebook did, but I guess from what I'm reading here, hotmail is at fault.
|
|
Back to top |
|
|
TheVerge
Joined: 19 Jul 2009 Posts: 928
|
Link Posted: Wed Jul 29, 2009 3:33 pm Post subject: |
|
|
make sure you have open relays turned off on your mail server... assuming it isn't hosted somewhere.
|
|
Back to top |
|
|
lexx21
Joined: 10 Oct 2008 Posts: 119
|
Link Posted: Wed Jul 29, 2009 3:36 pm Post subject: |
|
|
Absolutely right Verge. If you guys are running on a Unix box, I can help with that if you like.
|
|
Back to top |
|
|
k.berger
Joined: 16 Mar 2006 Posts: 84
|
Link Posted: Wed Jul 29, 2009 4:48 pm Post subject: |
|
|
Kal, do you use your hosting service SMTP server? Than it's their problem really... If that's the case, besides letting them know, and requesting fix (which you have done already), ask them to configure your own SMTP server, like mail.curtpalme.com. Make sure they set MX record correctly, a lot of services will NOT "deal" with Domain Records without MX record. Your SMTP server will have different, new IP address, so it will be clean.
Kris
|
|
Back to top |
|
|
kal Forum Administrator
Joined: 06 Mar 2006 Posts: 17860 Location: Ottawa, Canada
TV/Projector: JVC DLA-NZ7
|
Link Posted: Wed Jul 29, 2009 5:22 pm Post subject: |
|
|
TheVerge wrote: | make sure you have open relays turned off on your mail server... assuming it isn't hosted somewhere. |
lexx21 wrote: | Absolutely right Verge. If you guys are running on a Unix box, I can help with that if you like. |
It's indeed a unix box but a managed unix box so that I don't have to worry about this sort of stuff. I don't have root access. It's essentially a dedicated server (semi-dedicated) where I share one physical box with a few other clients. We all have our own environments but things like the version of SQL and PHP shared from what I understand (which I'm not sure I understand how that can work...). It's one of ATCIhosting.com's "semi dedicated" services.
Our mail servers are:
mail.curtpalme.com
smtp.curtpalme.com
(or so I'm told by my host company).
I'll ask them to confirm that open relays are turned off. What are open relays? Allowing anyone external to the domain to use the SMTP to send mail?
k.berger wrote: | Kal, do you use your hosting service SMTP server? Than it's their problem really... If that's the case, besides letting them know, and requesting fix (which you have done already), ask them to configure your own SMTP server, like mail.curtpalme.com. |
I'm not sure what I use!
I only use the control panel (ControlZX Control Panel in this case) to set up mail forwarding. So that when someone sends mail to (say) kal@curtpalme.com it gets forwarded to my hotmail and gmail accounts. How that gets done is through my own mail.curtpalme.com SMTP server I'm assuming but I don't know.
Quote: | Make sure they set MX record correctly, a lot of services will NOT "deal" with Domain Records without MX record. |
Is there a way I can check to see if the MX record is set correctly?
Quote: | Your SMTP server will have different, new IP address, so it will be clean. |
Different from my regular server IP? Why would it be different?
Thanks for the help/hints guys! Still waiting for a response from my host.
Kal
_________________
Support our site by using our affiliate links. We thank you!
My basement/HT/bar/brewery build 2.0
Last edited by kal on Wed Jul 29, 2009 5:44 pm; edited 1 time in total
|
|
Back to top |
|
|
emdawgz1
Joined: 14 Mar 2006 Posts: 7949
|
Link Posted: Wed Jul 29, 2009 5:32 pm Post subject: |
|
|
Curt Palme wrote: | Looks like hotmail went on a rampage. I don't get Facebook updates to my hotmail account either, that happened about 2 weeks ago. I thought it was something that Facebook did, but I guess from what I'm reading here, hotmail is at fault. |
SERVES YOU RIGHT!!!
SPAMMER!!!
_________________ Follow my blog
www.thesinglebrother.com
|
|
Back to top |
|
|
kal Forum Administrator
Joined: 06 Mar 2006 Posts: 17860 Location: Ottawa, Canada
TV/Projector: JVC DLA-NZ7
|
|
Back to top |
|
|
k.berger
Joined: 16 Mar 2006 Posts: 84
|
Link Posted: Wed Jul 29, 2009 5:41 pm Post subject: |
|
|
Kal, IP 206.225.23.5 = sded4.atcihosting.com. Apparently you are using their (hosting company) SMTP server.
curtpalme.com has IP 206.225.23.181.
If you hosting company can set-up your own SMTP server, it will have this IP address.
You can check if you have MX record by going to your DNS record, wherever it is registered.
Kris
|
|
Back to top |
|
|
kal Forum Administrator
Joined: 06 Mar 2006 Posts: 17860 Location: Ottawa, Canada
TV/Projector: JVC DLA-NZ7
|
Link Posted: Wed Jul 29, 2009 5:49 pm Post subject: |
|
|
Hi Kris,
Domains are registered at GoDaddy.com but they all use name servers of my host:
Nameservers: (Last Update 10/21/2007)
NS1.ATCIHOSTING.COM
NS2.ATCIHOSTING.COM
So I don't see how I can change the MX record. At least the GoDaddy control panel doesn't have any for it. There's the "Total DNS" entries which are blank because it says "Not hosted here" and the "TLD Specific" entries which say N/A.
Am I correct in understanding that the MX record must updated by the host then? I have no control over it?
Is there a way to check to see if it exists? (Some online tool?)
Kal
_________________
Support our site by using our affiliate links. We thank you!
My basement/HT/bar/brewery build 2.0
|
|
Back to top |
|
|
draganm
Joined: 08 Mar 2006 Posts: 8990 Location: Colorado
|
Link Posted: Wed Jul 29, 2009 6:27 pm Post subject: |
|
|
hey what does this have to do with CRT's?
It's ironic hotmail has blocked you guys since 99% of the phishing scams come from hotmail or yahoo mail.
|
|
Back to top |
|
|
sdumas
Joined: 23 Aug 2007 Posts: 39 Location: Montreal, Quebec
|
|
Back to top |
|
|
sdumas
Joined: 23 Aug 2007 Posts: 39 Location: Montreal, Quebec
|
Link Posted: Wed Jul 29, 2009 6:52 pm Post subject: |
|
|
Ohh - I forgot - it takes a few days...
That's the beautiful world of RBLs...
|
|
Back to top |
|
|
kal Forum Administrator
Joined: 06 Mar 2006 Posts: 17860 Location: Ottawa, Canada
TV/Projector: JVC DLA-NZ7
|
Link Posted: Wed Jul 29, 2009 7:25 pm Post subject: |
|
|
This is only one place (out of dozens) that provides site reputation services. I used their lookup service (http://www.mail-abuse.com/cgi-bin/lookup) and our IP isn't listed there so submitting a request won't be anything from what I can tell.
But my understanding is that you also need to figure out WHY you got put on the list in the first place. Many of the places warned that you can only ask once so you need to make sure why you're on the list first and fix the problem.
Or maybe there's something I'm missing? Why'd you suggest http://www.mail-abuse.com/removereq.html ?
Kal
_________________
Support our site by using our affiliate links. We thank you!
My basement/HT/bar/brewery build 2.0
|
|
Back to top |
|
|
k.berger
Joined: 16 Mar 2006 Posts: 84
|
Link Posted: Wed Jul 29, 2009 8:30 pm Post subject: |
|
|
kal wrote: | Hi Kris,
Domains are registered at GoDaddy.com but they all use name servers of my host:
Nameservers: (Last Update 10/21/2007)
NS1.ATCIHOSTING.COM
NS2.ATCIHOSTING.COM
So I don't see how I can change the MX record. At least the GoDaddy control panel doesn't have any for it. There's the "Total DNS" entries which are blank because it says "Not hosted here" and the "TLD Specific" entries which say N/A.
Am I correct in understanding that the MX record must updated by the host then? I have no control over it?
Is there a way to check to see if it exists? (Some online tool?)
Kal |
Hi Kal,
sorry for delay... I just checked (yes, there is utility called DNSQuerry, I am sure among many others), you DO have MX record, it points to mail.curtpalme.com. So it looks like you could use your own SMTP server.
Are you hosted on dedicated machine? I seem to remember you mentioning it while back, but I am not sure. If you are, there should be no problem whatsoever, unless the hosting company just doesn't do it.
And yes, you are right in your assumption - whoever name servers are used, that's where all that info (fully qualified domain name called A record, MX record, c-name record etc are set and controlled).
Kris
|
|
Back to top |
|
|
|
|