Jump to content

SUBIECTE NOI
« 1 / 5 »
RSS
Reconditionare cada baie din fonta

Problema imprimanta

Here goes nothing

BCR sau Raiffeisen
 Visual Studio 2022 instaleaza Epi...

Sfat alegere parbriz

EMAG - recenzii false facute de ei?

Recomandare telefon 900-950
 Nivel de trai

Semnal bun da'... prost

De ce statiile de radio FM nu ren...

Pe unde pot sa gasesc statistici ...
 Este reconditionat acest laptop?

Prelungire fire electrice

Amintiri despre satelit si retran...

Care este cel mai bun mod de a pr...
 

Email CBL Blacklisted

- - - - -
  • Please log in to reply
7 replies to this topic

#1
brebnl

brebnl

    Junior Member

  • Grup: Junior Members
  • Posts: 81
  • Înscris: 02.02.2017
Ma ocup cu realizarea de site-uri web si am mai multi clienti găzduiți pe contul meu de reseller.
De cateva zile unul dintre ei spune ca uneori emailurile nu i se mai trimit catre anumite adrese, si din cate am vazut au aparut ca listate pe CBL Blaclist(Spamhaus).
Pe contul de reseller nu mai am clienti cu adresa de mail personalizata dar am 7 site-uri web cu formulare de contact (pe care am instalat azi recaptcha v3) si cam atat.
Am scanat adresa IP de malware, site-ul clientului, am pus clientul ieri sa scaneze PC-ul de pe care trimite emailurile cu un antivirus dar azi iarasi s-a listat pe CBL si din cate am vazut la emailuri trimise, nu apar emailuri tip spam trimise de el.

Nu prea mai stiu ce sa-i mai fac sa nu se repete. las mai jos o parte din mesaje de pe raportul CBL.

"This IP address was detected and listed 4 times in the past 28 days, and 1 times in the past 24 hours. The most recent detection was at Thu Nov 28 02:35:00 2019 UTC +/- 5 minutes
This IP address was self-removed 3 times in the past week.
This IP address was self-removed 1 times in the past 24 hours.

If this IP address is NOT a shared hosting IP address, this IP address is infected with/emitting spamware/spamtrojan traffic and needs to be fixed. Find and remove the virus/spamware problem then use the CBL delisting link below.
CRITICALLY IMPORTANT, Read Carefully: In some unusual cases, IP addresses used in shared hosting (especially those using IPSwitch Imail, Plesk or Cpanel/WHM) can trigger CBL listings. If this is an IP address shared amongst many customers, make sure that your mail server software is set up to identify _itself_ in its mail connections, not each of your customers.
Many of these packages contain features that attempt to assign each customer a dedicated virtual IP address, so that each customer's stream of email comes from a different IP address. However, in many cases the package is unable to actually bind to a virtual address (and hence uses the server's primary IP address regardless), or, there are more customers than there are IP addresses, and the customers without dedicated IP address all end up using the same IP address - the server primary IP address.
To the receiving systems, an IP address that appears unable to decide what it's own name is hence highly suspect, and is in fact imitating malicious spamware.
Strictly speaking, using different names in the HELO/EHLO from the same IP address is not a violation of the Email RFC standards. However, it is clear that the RFCs are intending that the HELO/EHLO identifies who owns the mail server. Furthermore, using multiple HELO/EHLO names is highly frowned upon in many mail sender Best Current Practise (BCP) documents, such as those from the OECD and M3AAWG.
It is sometimes claimed that using a common name for the HELO/EHLO causes problems with SPF/SenderID. Nothing could be further from the truth, as witnessed by the fact that the very largest multi-domain hosters (such as gmail, yahoo etc) use the same domains for all of their mail servers."

Si un link catre: https://www.abuseat.org/cPanel.html

#2
gumball3000

gumball3000

    ...

  • Grup: Senior Members
  • Posts: 49,649
  • Înscris: 24.09.2006
cumpara ip dedicat, asa se intampla cand sunt 100 pe acelasi ip si unii se apuc de facut prostii

#3
brebnl

brebnl

    Junior Member

  • Grup: Junior Members
  • Posts: 81
  • Înscris: 02.02.2017
Pai daca am cont de reseller am si IP dedicat. Doar ca clientii mei sunt toti pe acelasi IP.

#4
vali

vali

    forumist

  • Grup: Senior Members
  • Posts: 4,898
  • Înscris: 03.12.2001
fie le oprești mailul, fie îți asumi.

#5
dexterash

dexterash

    --something---

  • Grup: Senior Members
  • Posts: 22,912
  • Înscris: 19.08.2004

View Postbrebnl, on 28 noiembrie 2019 - 19:25, said:

Pai daca am cont de reseller am si IP dedicat. Doar ca clientii mei sunt toti pe acelasi IP.
Pai de ce nu ai clientul si IPul? Altfel, fiecare "beneficiaza" de ce fac ceilalti - mai un SPAM, mai un malware, mai din astea... ca deh, si asa nu are cine sa le faca ceva.

#6
mihairo79

mihairo79

    Junior Member

  • Grup: Junior Members
  • Posts: 84
  • Înscris: 06.11.2019

View Postbrebnl, on 28 noiembrie 2019 - 18:45, said:

Ma ocup cu realizarea de site-uri web si am mai multi clienti găzduiți pe contul meu de reseller.
De cateva zile unul dintre ei spune ca uneori emailurile nu i se mai trimit catre anumite adrese, si din cate am vazut au aparut ca listate pe CBL Blaclist(Spamhaus).
Pe contul de reseller nu mai am clienti cu adresa de mail personalizata dar am 7 site-uri web cu formulare de contact (pe care am instalat azi recaptcha v3) si cam atat.
Am scanat adresa IP de malware, site-ul clientului, am pus clientul ieri sa scaneze PC-ul de pe care trimite emailurile cu un antivirus dar azi iarasi s-a listat pe CBL si din cate am vazut la emailuri trimise, nu apar emailuri tip spam trimise de el.

Nu prea mai stiu ce sa-i mai fac sa nu se repete. las mai jos o parte din mesaje de pe raportul CBL.

"This IP address was detected and listed 4 times in the past 28 days, and 1 times in the past 24 hours. The most recent detection was at Thu Nov 28 02:35:00 2019 UTC +/- 5 minutes
This IP address was self-removed 3 times in the past week.
This IP address was self-removed 1 times in the past 24 hours.

If this IP address is NOT a shared hosting IP address, this IP address is infected with/emitting spamware/spamtrojan traffic and needs to be fixed. Find and remove the virus/spamware problem then use the CBL delisting link below.
CRITICALLY IMPORTANT, Read Carefully: In some unusual cases, IP addresses used in shared hosting (especially those using IPSwitch Imail, Plesk or Cpanel/WHM) can trigger CBL listings. If this is an IP address shared amongst many customers, make sure that your mail server software is set up to identify _itself_ in its mail connections, not each of your customers.
Many of these packages contain features that attempt to assign each customer a dedicated virtual IP address, so that each customer's stream of email comes from a different IP address. However, in many cases the package is unable to actually bind to a virtual address (and hence uses the server's primary IP address regardless), or, there are more customers than there are IP addresses, and the customers without dedicated IP address all end up using the same IP address - the server primary IP address.
To the receiving systems, an IP address that appears unable to decide what it's own name is hence highly suspect, and is in fact imitating malicious spamware.
Strictly speaking, using different names in the HELO/EHLO from the same IP address is not a violation of the Email RFC standards. However, it is clear that the RFCs are intending that the HELO/EHLO identifies who owns the mail server. Furthermore, using multiple HELO/EHLO names is highly frowned upon in many mail sender Best Current Practise (BCP) documents, such as those from the OECD and M3AAWG.
It is sometimes claimed that using a common name for the HELO/EHLO causes problems with SPF/SenderID. Nothing could be further from the truth, as witnessed by the fact that the very largest multi-domain hosters (such as gmail, yahoo etc) use the same domains for all of their mail servers."

Si un link catre: https://www.abuseat.org/cPanel.html

E o tampenie f mare sa ai mai multi clienti pe acelasi IP.
Cea mai buna varianta e sa ai cate un IP pentru fiecare client. In felul acesta clientii o sa fie mai responsabili cu activitatile lor.

#7
vali

vali

    forumist

  • Grup: Senior Members
  • Posts: 4,898
  • Înscris: 03.12.2001
IPurile in plus costă 1€/lună. mult pentru ăia care vor hosting cu 2€ lună.

#8
mihairo79

mihairo79

    Junior Member

  • Grup: Junior Members
  • Posts: 84
  • Înscris: 06.11.2019

View Postvali, on 29 noiembrie 2019 - 06:28, said:

IPurile in plus costă 1€/lună. mult pentru ăia care vor hosting cu 2€ lună.

Exact. Gazduirea aia de 2E nu e degeaba ieftina.

Anunturi

Chirurgia spinală minim invazivă Chirurgia spinală minim invazivă

Chirurgia spinală minim invazivă oferă pacienților oportunitatea unui tratament eficient, permițându-le o recuperare ultra rapidă și nu în ultimul rând minimizând leziunile induse chirurgical.

Echipa noastră utilizează un spectru larg de tehnici minim invazive, din care enumerăm câteva: endoscopia cu variantele ei (transnazală, transtoracică, transmusculară, etc), microscopul operator, abordurile trans tubulare și nu în ultimul rând infiltrațiile la toate nivelurile coloanei vertebrale.

www.neurohope.ro

0 user(s) are reading this topic

0 members, 0 guests, 0 anonymous users

Forumul Softpedia foloseste "cookies" pentru a imbunatati experienta utilizatorilor Accept
Pentru detalii si optiuni legate de cookies si datele personale, consultati Politica de utilizare cookies si Politica de confidentialitate