 |
Post AtECieXEm4ef1ZrJrs by [email protected] |
 |
More posts by [email protected] |
|
Post #AsMFJIK81iZADwUWMS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
Taking a stroll through my spam folder, I saw a bunch of legitimate messages fr… |
|
|
|
Post #AsMFJISdW5N6eKTJce by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jwz The stats we collect for the #SpamAssassin project (mass-scan results from… |
|
|
|
Post #AsMFJIYf9gByx1I812 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo Wow, that's amazing. Great job everybody! So glad we spent so m… |
|
|
|
Post #AsMFJIeKoajHEbwerA by [email protected] |
|
0 likes, 2 repeats |
|
|
|
@jwz @grumpybozo just one more public key in a TXT record, that'll fix emai… |
|
|
|
Post #AsMFZGz8lrc2hpIFjU by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@grumpybozo @jwz we use these for anti-phishing. Until I started my current job… |
|
|
|
Post #AsMHMaEK6jD8XKTJzs by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@grumpybozo @jwz email authentication like DMARC/SPF does one thing: it prevent… |
|
|
|
Post #AsMHZYr6WrxG2Qne4G by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@grumpybozo @jwz while i wouldn't call them useless, SPF/DKIM/DMARC do have… |
|
|
|
Post #AsMHnIFf3iFOb1plzc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@atax1a @jwz It is a frustration that for DKIM, DMARC, and SPF to be as trustwo… |
|
|
|
Post #AsMHnILKicmgscUIpk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@grumpybozo @jwz and don't get us started on how dnssec is untroubleshootab… |
|
|
|
Post #AsMHqCrTYVRqkQuVvM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@paul_ipv6 @grumpybozo I had *way* too many false positives with spamhaus et al… |
|
|
|
Post #AsMHqCyD9Spt5K3tQG by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@jwz @grumpybozo huh. i use sbl-xbl and have not had problems with false positi… |
|
|
|
Post #AsMKDRss4Hr9uMm21Q by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@paul_ipv6 @jwz I would never call them useless. They're just not everythin… |
|
|
|
Post #AsMKDRythsg2D3aqPo by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@grumpybozo @jwz yeah, trying to figure out DMARC issues is... fun. and ARC is … |
|
|
|
Post #AsMKSRS5xL1mudOmP2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@deepthoughts10 @grumpybozo @jwz and the mail clients most people use don’t e… |
|
|
|
Post #AsMKSRZBWyhPGciRSC by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@mkoek The primary purpose of positive email authentication is to enable receiv… |
|
|
|
Post #AsMLZQ39fTOeXpckpE by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@paul_ipv6 @grumpybozo @jwz I configured my mail server to soft-reject mail fro… |
|
|
|
Post #AsMQu7ElJACm39k1wm by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@deepthoughts10 wrote: "email authentication like DMARC/SPF does one thing… |
|
|
|
Post #AsMXPEaYcn2hYJ9qJk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@atax1a @jwz @grumpybozo i hear if we just get everyone to have just the right … |
|
|
|
Post #AsQMg4wnP03Li4EFJQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @jwz SPF, DKIM, and DMARC were never designed to stop spam — they… |
|
|
|
Post #AsQMg5ieX4Km6UcSuG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@freddieleeman To be fair having a valid DKIM signature gives you a negative sc… |
|
|
|
Post #AsQMg5p29LREQHbYqu by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@link2xt @grumpybozo @jwz By default, a DKIM signature adds a small positive sc… |
|
|
|
Post #AsRmNOsdrLyBzl02zY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tychotithonus @deepthoughts10 @grumpybozo @jwz yes, but as long as you can eas… |
|
|
|
Post #AsRmNOzNSJMEKe9QUS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@mkoek Analogy from physical mail may help. Today, anyone can put any return ad… |
|
|
|
Post #AsRmNP5P5uB6dKyEsq by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@tychotithonus @deepthoughts10 @grumpybozo @jwz Thanks, I know how it works and… |
|
|
|
Post #AsRmOSAH8LhGTGkY08 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @jwz Bonus round: GMail themselves effectively requires 'DMARC&… |
|
|
|
Post #AsRmOSImciVCtejLGK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cks @grumpybozo My experience is that "forward mail from your own domain … |
|
|
|
Post #AsRmOSQa9ijzHqNZQ0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz @grumpybozo We may well have been lucky in that we're a long establish… |
|
|
|
Post #AsRmOSXfjMPbdphETA by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cks @grumpybozo "Nothing works unless Google deigns to grant you a person… |
|
|
|
Post #AsRmOSdLOGwtvQLlJI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz @cks @grumpybozo Microsoft is the same, for the record. An e-mail could ar… |
|
|
|
Post #AsRmOU3G7PGyK5TyLI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz @grumpybozo I fully expect that someday GMail will decide to stop acceptin… |
|
|
|
Post #AtECdhD5Ox7bsB4OKu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @jwz The SPF, DKIM and DMARC was from an era when spam was primaril… |
|
|
|
Post #AtECdhJozuVeD4Dlpo by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@neel @jwz @grumpybozo I use the Spamhaus DROP list.. it blocks a lot of crap f… |
|
|
|
Post #AtECeuuxvDmifzAzdw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cks @jwz @grumpybozo The professors can set up Gmail so that it collects the m… |
|
|
|
Post #AtECev23UrSL1yUeh6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@nielsk @jwz @grumpybozo Sadly modern security practices are going to kill off … |
|
|
|
Post #AtECev8n5oqNMre2C0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cks @jwz @grumpybozo The mail provider I use personally has switched on app-pa… |
|
|
|
Post #AtECevFAi5wpged88e by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@nielsk @cks @jwz "App passwords" are a reasonable solution. They lac… |
|
|
|
Post #AtECevLYKN3I0RcE5I by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @nielsk @jwz If you're lucky, people will enter the app passwor… |
|
|
|
Post #AtECevRvwe9kKEbK1w by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cks @nielsk @jwz The proper implementation of app passwords inflict consequenc… |
|
|
|
Post #AtECfMztWUMflNhKDI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz @cks @grumpybozo Gmail's POP3 polling has the fun feature that trigger… |
|
|
|
Post #AtEChjTiuSyY4AmCye by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo :flan_think: what I'm hearing is that I should reject mail as s… |
|
|
|
Post #AtECi9TyEAcciT5lyK by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gaelicWizard @jwz It is nuts, and anti-phishing is what mail authentication is… |
|
|
|
Post #AtECieXEm4ef1ZrJrs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cks @jwz The only ways to do forwarding that doesn't break SPF is to use S… |
|
|
|
Post #AtECjHuIOHGx8Nwmiu by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz @cks @grumpybozo . Huh, that's interesting. I do forward my domain ema… |
|
|
|
Post #AtEClCtM0YE89vQDHE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz @grumpybozo maybe should give hashcash - the proof of work idea that spawn… |
|
|
|
Post #AtEClD05bVcAUoZam8 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@ghard @jwz We (the #SpamAssassin project) had support for HashCash for well ov… |
|
|
|
Post #AtEClD7BB9HmqntFpI by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @ghard @jwz I slavishly added hashcash headers to all my outgoing m… |
|
|
|
Post #AtEClDEcjTEzDtNCQi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@kitten_tech @grumpybozo @ghard @jwz I'm still pretty convinced that it'… |
|
|
|
Post #AtEClEJyh37MamszPk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cks @grumpybozo @jwz SRS usually breaks if there is a strict DMARC-policy in p… |
|
|
|
Post #AtECm3hTfRDbwRGyci by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @atax1a @jwz Intent of SPF was to get to the point that a domain re… |
|
|
|
Post #AtECm3oDGObeHKQM7c by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@nwp @grumpybozo @jwz none of this is true or follows from the premises, hth |
|
|
|
Post #AtECncLsJqZfhWuav2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@neel @grumpybozo @jwz SPF is still helpful to figure out if I overblocked if s… |
|
|
|
Post #AtECncSFw7g81Jtgrg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@nielsk @neel @jwz Right. Both SPF and DKIM can be useful as *positive* signals… |
|
|
|
Post #AtECp299tqgrzZdgJc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@paul_ipv6 @grumpybozo I don't remember. It happened a couple of times and … |
|
|
|
Post #AtECp2GbSAe4Mf7cv2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz @paul_ipv6 @grumpybozo TBF, most of the spam I get is from AWS, gmail and … |
|
|
|
Post #AtECphhHPtLUrGv0gy by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @jwz In my experience spammers have a better setup in that regard t… |
|
|
|
Post #AtECrb3J5nU6pT7klk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @jwz The un-forwardable place we encountered had set up SPF but was… |
|
|
|
Post #AtECsFIFTfChdOQFc0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@neel @jwz There really hasn't been a huge change during this century, and … |
|
|
|
Post #AtECtEGEnkqAiox0Rk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @jwz i run my own mailserver. how do i contribute? |
|
|
|
Post #AtECwugLXNCN9ov4nQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cathysarisky @jwz @cks It becomes a problem when the forwarding includes spam,… |
|
|
|
Post #AtECxFYFweClsoIPbM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@Viss @jwz See the SpamAssassin website:https://cwiki.apache.org/confluence/dis… |
|
|
|
Post #AtECyy9TbixeUwWdKi by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@grumpybozo @jwz thanks! |
|
|
|
Post #AtED01zqnYTeiCWsUa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz @paul_ipv6 The Spamhaus services have gotten complicated enough that they … |
|
|
|
Post #AtED3VDQcS5UCZXG0O by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@cks @grumpybozo @jwz I guess it's at about a 100 years since I looked into… |
|
|
|
Post #AtEDH1Se2iBTyR6F4C by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz At least the bad guys can't forge the From address any more. I'm n… |
|
|
|
Post #AtEDH1ZjcLr6KQPu7M by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@argv_minus_one Well that's the thing, I have yet to discover a way for pos… |
|
|
|
Post #AtEDH1gTDJF8fJZHcG by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz Hmm true. You could run a milter that checks DKIM and rejects any message … |
|
|
|
Post #AtEDIV7ZFjzOFhwhzE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jrychter @paul_ipv6 @grumpybozo Almost all of the spam I get is from Google. G… |
|
|
|
Post #AtEDPH6hkqr6oelwx6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@florian @jwz LOL. Not that either. |
|
|
|
Post #AtEDRvizi6vhMtwqP2 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz @cks @grumpybozo it depends on how you do it. I use my DNS provider’s op… |
|
|
|
Post #AtEDTvlQXGYQ4M2XPU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@atax1a @jwz @grumpybozo gotta plan to deal with that, just waiting for an “i… |
|
|
|
Post #AtEDW6QVrZ2ViaIF3Q by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@nielsk @jwz Exactly. Spammers have one job: getting mail into your mailbox. Th… |
|
|
|
Post #AtEDXt7YIwpL1vHAPY by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@argv_minus_one https://jwz.org/b/yklC |
|
|
|
Post #AtEDYI2ndkscKQFDyS by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz DKIM and SPF allow good actors to use a consistent identifier that allows … |
|
|
|
Post #AtEDaW1UdbpeGKh864 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@sabik @cks @grumpybozo Yes, it's awesome! Maybe in the next release they c… |
|
|
|
Post #AtWd37EDtjKFSbf6Zc by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@jwz Google and Yahoo are only enforcing that on bulk mail, and fairly carefull… |
