Blacklisted Because Of Legitimate Email Sent Via Web-based Forms
Jan 30, 2008
Scenario:
Client has a nice website with a "contact us" online form. The form itself is secure (no injection attacks etc) and simply collects some data from the site-user, and emails that data to the site owners email address.
This email is sent using php "FROM" the siteusers email address (eg: random@gmail.com etc), so that when it arrives with the site owner, they can simply hit reply etc.
However - the site owners email is protected by "FrontBridge" (aka Microsoft), and suddenly they stop receiving such form-mail.
Response from FrontBridge is
"If the IP that is sending these emails does not have the domain names that it is sending on behalf of registered to it, it can not send to our domain as it will be picked up and flagged as spam. " They then indicate that too much of this so called "spam" will result in a blacklisting - which is what seems to have now happenned.
Pretty unfair I'd have thought, and probably how MOST web based form2email scripts are setup.
my main client wants to rehash his database. Now this is a 1.5m strong list. All legitimately collected with time/IP stamp, privacy policy, etc. These clients are from the online gambling industry (legally licensed).
The problem is many of these users subscribed to our services up to 4 years ago (not all are that old, but some are), and they haven't heard from us for up to 2 years (again, some heard from us more recently).
Anyway, I've never deal with that number of emails and potential bounces. Obviously, the first round of emailing will have a large number of bounces, but that will quickly subside.
So, can you guys point me to a quality dedicated server, with at least 4 IPs (hopefully 10) and that can handle this type of activy? I'll be glad to sign up under an affiliate link if I can get a good answer.
I've got a small personal site where I put my music & photography.
Lately, my .mp3s started getting a lot of traffic from [url].
I don't read Chinese.
Anyone know if it's a legitimate site? (whatever that means).
I recently reorganized my site, putting the tunes in their own directory (off of public_html), and now 202.108.23.172 generates a boatload of 404 errors.
If I decide that I want to block a URL, where might I read a good tutorial on doing so?
We are a small ISP with about 5000 users. Only a very small percentage of our users can send email to Yahoo, and even that is sporadic.
Hundreds of our users' legitimate emails are rejected daily with the following message: 421 Message from (208.66.56.9) temporarily deferred - 4.16.50. Please refer to help.yahoo.com/help/us/mail/defer/defer-06.html
I have filled out "Yahoo! Mail Delivery Issues Form" a few times. I get the following automated response message: -------------------------------------------------------------------- Hello,
This is an automated message regarding your recent request for Yahoo! Mail Customer Care support. We have received your message and willYa respond within the next 48 hours with an answer.
Thank you for reaching out to us. We look forward to helping you!
Sincerely,
Yahoo! Customer Care
**Please do not respond to this message as no one will receive it. --------------------------------------------------------------------------
But I never received a response from Yahoo and they continue rejecting our users' legitimate emails.
After reading many forums and blogs, it appears that they are doing the same thing to many other small ISPs and companies with their own email servers.
This practice can interrupt many legitimate business communications and hurts many small businesses.
I have one domain that is having issues sending e-mail from any php forms, etc. They do have their MX records pointing out to a different service...is there anything special I need to have them do in order for this to work?
Also, do I need to check or uncheck "Always accept mail locally even if the primary mx does not point to this server."
Considering a web site could be completely useless without its web forms working as expected, and the uptime reports do not verify them at all, I would like to know if you people, consider it important.
I have a task of converting a current Win Server based apache server from multiple IP based virtual hosts to a full name based virtual hosting.I'm famiilar with the steps but I was wondering if there are any gotchas in Windows that I should be aware of. It seems that now matter what I change in the new config it doesn't work or work as expected.
My Webhost suddenly does not allow php contact forms! Instead, they expect me to change all forms on 16 sites hosted by them to use a phpFormMail solution they provide. It's a real hassle.
I ordered a server on Sagonet, a company specializing in renting dedicated servers. Well, after paying 125 euros, I receive a server with dns almost totally blacklisted in my country, Italy. I ask those of Sagonet of risolvermi the problem but they are slow and rude and say that I hosted illegal content on my server. Too bad that my server has only a forum half-empty and no illegal content and they want from me other $60 for control my sites, blackmailing me. So I paid for a service, without being able to take advantage and they . Be careful to Sagonet, a disservice, because people rude and incompetent.
I found out today hostgator.com is black listed and so is the ip they have given me for my domain. I have allways been a happy hostgator.com customer but when your domain is blacklisted because of your hosting company thats not good. It also prevents some people from being able to send you e-mail.
When I talked with HG support today they suggested a dedicated IP but no promises. So thats not a positive indicator as well.
I have the baby croc plan with them and would like something simular with another hosting company that I can be for sure is not on a black list. I have had no compliants with them over last 2 years I have used them but this is something that will make me leave them if there is nothing they can do to solve it which appears to be the case after speaking with HGs support.
My server seems to be caught under this listing, even though my IP address is not meantioned anywhere in the listing (nor have i been sending out any spam) The blacklist if of a netblock of 4096 ip address in which 2 of which belong to my server.
[url]
My question is really what do i do now?
Should I contact my provider or do I have to contact the spamhaus directly?
Which both seem to be for blacklisted email servers. But what about checking if the ip has been blacklisted for other reasons ( business practices, reports of complaint, adult sites, etc)
What is a decent check?
This is for checking on newly assigned dedicated ip's ( or other) before applying them to domains on a new account.
we got a server blacklisted because there was a script sending spam emails, ofcourse we got that removed and taken more measures, the problem is that many lists still have our ips blacklisted (4 days after the solution was given).
is there some kind of script or any service/website that can check my server's ips for being in any spam list and notify me everyday ?
We have a few customers who have multiple C classes with us and we are wondering how most of you monitor for blacklisting.
We currently randomly pick a few IPS and check them once a month but this is not very thorough. We were wondering if there is a program out there that can check say a /20 automatically once a month or atleast something we can initiate an automated check once a month with?
I'm having a problem with a client (X) which doesn't receive emails from one of his clients(Y). After few days of talking with Y hosting company I wasn't able to solve the broblem, but told from them to check if their IP is blocked in my server (which I'm sure it isn't).
My first question is where to check for blacklisted IP which blocks email, and not HTTP request ...
Is there a different place than /etc/apf/deny_hosts.rules .. is there a file in exim configuration ?
I have a linux server with WHM 11.24.2.
----
The error that Y client receives when sending mail to X is:
Server Response: '550 5.0.0 <mail@mail.com>... User unknown', Port: 25, Secure(SSL): No, Server Error: 550, Error Number: 0x800CCC79
I'm very sure that if Y's IP was blocked he shouldn't receive that error.
What I belive is that there are some DNS problems, because X client was hosted on the same company as Y, now few years ago, and I belive that when moving X to my server, the other hosting company didn't deleted all DNS records .. and that's why Y clients get the error user unknown. Is it correct what I'm suppose ?
We are starting to send our newsletter out to people who subscribe to it. We are using the same server our website is on, so we have the same ip address. We don't spam or anything like that, but what if someone wants to report you. Do you get blacklisted right away or does it take multiple reportings? Does it mess up your search engine ranking?
One of our customers has reporting not being able to access any sites hosted on our server. He is using a cable connection with a static IP number . He is able to access all other web sites on the Internet, he just can't access the ones hosted on our network.
Do you have any ideas on why this could be occuring, or if there is something on the server which could have blacklisted his static IP, preventing him access.
I've had problem with the VPS getting blacklisted alot lately.
Anyway, I think the problems resolved now and we've not been blacklisted for over 2 days, yet there still seems to be alot of e-mail servers rejecting mails from the server due to blacklisting.
I have contacted hotmail asking why automated emails such as registration verification are being blocked and they said that my server's IP was on a blacklist for spam. I never spam and I do not think a bot has phished using my server's IP. Anyway, if I were to switch server IPs would that solve the problem?
This is in regard to ongoing stress I've had over this server from DN...
Keep in mind this is a NEW server order; my first with this company.
I was assigned IPs that appear to be on multiple spam block lists. The "biggest" problems are mail being dumped to bulk by yahoo and dumped to bulk or completely black holed by hotmail. It was also blocked by comcast, mail.ru, and anyone who uses SORBS (those are the only ones I KNOW about so far). This helps reinforce the suspicion that bulk mail was being delivered from the IPs at some point.
I Contacted support at 9PM on the 13th and was referred to abuse. Only after complaining again on the 17th, was I told they requested removal from ONE of the blacklists and they would "look into" the others. I replied saying I wanted new IPs or I would request a refund and that I did not feel the service I recently purchased was actually delivered.
Now here is the part that is giving me the feeling this will not end well for me; I no longer see the abuse department ticket when I log into their ticket system.
What If I ordered the server to use as a mail server? Am I out of line for finding a new server unable to deliver mail to the hotmail/yahoo inbox unacceptable?
Telling my customers to wait and maybe someday their mail will be delivered to the major free mail services is not the kind of reputation I want to have. Its feels like I was sold a problem someone else created and am expected to wait an unspecified amount of time to see if it can be resolved. I do not feel its fair to be left hanging while waiting for white listing attempts on IPs I did not soil in the first place.
After upgrading to Plesk 12, I switched on email sending limit to 50 emails per hour per account and also changed mail config to start using domain names in SMTP and less than 12 hours later became blacklisted by CBL - hotmail and live rely on this blacklist - ; the argument was we were sending bots and malware. This server has been under ASL since over a year now and we are positive its clean; still we did a full scan and nothing came up and none of the mail accounts were even close to sending 50 emails per hour. Being sure we were not sending spam nor malware contacted CBL and got whitelisted ..... for less than 24 hours. This happened three days in a row until we switched back to the previous mail settings where domains are not used in SMTP greeting and since then, we haven't had any trouble with CBL. how can we prevent being blacklisted while using domain names in SMTP greetings?