I just found out all my mails sent to Gmail are marked as spam. However, if I check my IP address in independant grass-root spam databases, my IP address isn't blacklisted. I checked 7 of them. Do you know how to solve this problem
I have a linux server with shared hosting ,now for couple of days one of my client face problem regarding spam with gmail,I have also cross-checked all the mandatory records,and we have already create MX,SPF & reverse dns record with domain keys for that domain.
For all newly created domains, they will automatically adopt a DNS template which I've set up in Plesk. But for my own domains (not clients) I've changed my MX entries in my DNS Settings section to point to the server of that of Gmail (Google). The primary server with the highest priority is "aspx.l.google.com"
To get to the point... I receive emails on the Gmail interface, which is stored on the Gmail server, though I have a slight problem when it comes to local emails. In other words...when my server sends out an email to myself (either from a contact form, daily log files, etc...) I don't receive the emails through the Gmail interface, but rather through my POP server, which is logical, since my server is most probably configured to use "mail.yourdomain.com" and not "aspx.l.google.com".
Question : How can I have both incoming emails (from other domains/servers) and local emails (from my own server) go through the Gmail server? I'm guessing that I'll have to edit Sendmail or PHP or something, though I'm not sure, that's why I'm posting this.
Sorry if the post is a bit confusing. I tried my best to explain the situation, though if you have any questions, please respond with them.
I have a domain when we send mail through any email id of this domain to Gmail it goes to spam folder but in yahoo and hotmail it goes into inbox folder.So how i whitelist my domain in gmail so my mails go into inbox.
I have also submitted this require or issue in gmail support but no answer.
After reading numerous accounts (27 and counting) of people's domains being stolen I decided to investigate the situation more closely. What follows is my personal investigation.
Without jumping to any conclusions as to how all of these domains were hijacked, I gathered the facts and sat back to see where the common denominators were. All of the domains had GMail accounts listed in whois.
Many of the domains were hosted with GoDaddy
Many of them had Alexa rankings of less than 10,000
While the GoDaddy connection was interesting, the fact that all of the hijacked domains had GMail accounts stood out as the real common thread.
It's still not clear how the hijacker was able to obtain access to the GMail accounts it is clear that using a GMail account for your domain registrations may not be a wise decision. We have seen infectious code on websites designed to either steal cookies or check to see if the visitor also has GMail opened in another window.
A few cases involved visiting a webpage while GMail was opened and the webpage doing a POST to a GMail interface and injecting an email filter into the visitor's GMail settings.
Typically the injection would include filters that would automatically skip the inbox and forward emails from register.com, godaddy.com and dreamhost.com to another GMail email account.
Then with forwarding set and knowledge of the registered email address, the hijacker would have use GoDaddy's website to obtain the customer number, which requires a verification email. Armed with that information, the hijacker would go back to GoDaddy and have an Authorization Code for password reset, sent to the registered email address.
The password would be sent to the email address, which would be forwarded to the hijacker and then they could move the domain to another registrar, change the website and benefit from the traffic to that website.
Or in some of these recent cases, the hijacker asked for $2,000 in order to "give" the domain back.
How did this happen?
Creating a filter in your GMail account sends a request to the GMail server farm. The request is an obfuscated URL with each section identifying the filter, the account, etc.
Many of the parameters passed in the URL can be generated accurately but one parameter needs the cookie from the account holder's computer. They can obtain this quite easily with any general cookie stealing technique (there are many).
What can you do? For starters, this isn't the first exploit of GMail accounts. I would switch all of my domains to be registered to a different email address.
Secondly, I would pay the extra money to have your domain information listed as Private. This way your contact information will not show up on whois searches. GoDaddy offers Protected Registration if you're already listed with them.
Third, if you do use GMail, check your filters often. And check your deleted items as well. You never know what you might find in there.
Anyone here have any stories to share about domains hijacked?
my perfectly legitimate emails are being marked as spam. I have no clue why. I run postfix, all hostnames are supposedly configured correctly.
Here's the headers
Delivered-To: firstname.lastname@example.org Received: by 10.114.121.9 with SMTP id t9cs693254wac; Sat, 4 Aug 2007 18:44:05 -0700 (PDT) Received: by 10.90.54.4 with SMTP id c4mr3981359aga.1186278245304; Sat, 04 Aug 2007 18:44:05 -0700 (PDT) Return-Path: <email@example.com> Received: from localhost.localdomain (251.102.232.72.static.reverse.ltdomains.com [126.96.36.199]) by mx.google.com with ESMTP id 6si5888223agb.2007.08.04.18.44.04; Sat, 04 Aug 2007 18:44:05 -0700 (PDT) Received-SPF: pass (google.com: domain of firstname.lastname@example.org designates 188.8.131.52 as permitted sender) Received: from www.mapletip.com (localhost.localdomain [127.0.0.1]) by localhost.localdomain (Postfix) with ESMTP id 7AB1448224 for <email@example.com>; Sat, 4 Aug 2007 20:44:23 -0500 (CDT) Date: Sat, 4 Aug 2007 20:44:23 -0500 To: firstname.lastname@example.org From: MapleTip Email Support <email@example.com> Reply-to: firstname.lastname@example.org Subject: MapleTip Site - Question Message-ID: <email@example.com> X-Priority: 3 X-Mailer: PHPMailer [version 1.73] MIME-Version: 1.0 Content-Transfer-Encoding: 8bit Content-Type: text/html; charset="iso-8859-1"
The thing is that the emails that are going to gmail servers are getting stucked on my mail queue, here is the log of one mail in exim:
Message 1KyWoL-0004jv-FS is no longer frozen LOG: MAIN cwd=/usr/local/cpanel/whostmgr/docroot 4 args: /usr/sbin/exim -v -M 1KyWoL-0004jv-FS delivering 1KyWoL-0004jv-FS Connecting to gmail-smtp-in.l.google.com [184.108.40.206]:25 ... connected SMTP<< 220 mx.google.com ESMTP 34si8790560yxm.0 SMTP>> EHLO srv211.xxx.cl SMTP<< 250-mx.google.com at your service, [64.76.xxx.xxx] 250-SIZE 35651584 250-8BITMIME 250 ENHANCEDSTATUSCODES SMTP>> MAIL FROM:<firstname.lastname@example.org> SIZE=1957264 SMTP<< 250 2.1.0 OK 34si8790560yxm.0 SMTP>> RCPT TO:<email@example.com> SMTP<< 250 2.1.5 OK 34si8790560yxm.0 SMTP>> DATA SMTP<< 354 Go ahead 34si8790560yxm.0 SMTP>> writing message and terminating "." LOG: MAIN == firstname.lastname@example.org R=lookuphost T=remote_smtp defer (-1): smtp transport process returned non-zero status 0x000e: terminated by signal 14 LOG: MAIN Frozen
It happens on all my servers (i have 4) and i don't know if the problem is mine, gmail's or even my datacenter
I have all my services running, (though i restarted exim anyway)
All of a sudden my sites are not visible to me hosted in the same cirtex hosting account. I have verified that it wasn't spyware messing with my local computer and can view the site via a proxy. They use cpanel and there is no block visible, but there has to be something somehwere. I told them to restart and that did make the site visible until I checked in the morning, Where would a block be if this is it and is there a chance this was done by a hacker?