Register Members List Search Today's Posts Mark Forums Read

Reply
 
Article Options
  #16  
Old 27 Jan 2009, 22:28
Alfa1's Avatar
Alfa1 Alfa1 is offline
 
Join Date: Dec 2005
Yes, i went trough 20.000 emails in a year. Really sucks. But not as much as your new members never getting their email. Cause you will likely not find out when that happens and that problem will seriously delay the growth of your site.
Reply With Quote
  #17  
Old 28 Apr 2009, 05:13
rob01 rob01 is offline
 
Join Date: Sep 2008
Real name: robert
how you check the open relays connections?

im kinda new :S
Reply With Quote
  #18  
Old 28 Apr 2009, 10:33
Alfa1's Avatar
Alfa1 Alfa1 is offline
 
Join Date: Dec 2005
Originally Posted by rob01 View Post
how you check the open relays connections?

im kinda new :S
Normally an open relay would mean that your smtp mail server accepts requests without authorization. i.e. anybody can access it and send email from it. This can be tested through many online site. Google it.

With vbulletin and its addons however, there are other open relay options, trough pages that have a function to send email. Make sure that guests can not use the 'Use Email to Friend' function anywhere on your site. I'd recommend turning this off for newbies as well.

Then go to your catchall email address. This is the standard email address where all bounced email arrives at. Often this is user@domain.com Ask your host if you do not know.

Have a look at the emails that got bounced and should not have sent by you. You may see spam sent from your server, that was then bounced back to your catchall address, because the addressee does not exist. This is where it gets interesting.
Review the message, the headers and the raw view. Find the path used to send the email and specifically the mail script that was used. The mail script often indicates that there is a script in one of your add-ons that allows spammers to send email through your site.

See if you can identify the script and the addon it is part of. If so, then first see if you can correct this by changing the setting of that addon. If yes, then post about it in the relevant thread on vb.org to give others a heads up. If not, then let the coder know that there may be a problem with the addon, by posting in the relevant thread.
Reply With Quote
  #19  
Old 02 May 2009, 05:58
Mutt's Avatar
Mutt Mutt is offline
 
Join Date: Nov 2001
I recently sent out a mass email from the admin control panel and was surprised that there wasn't any kind of unsubscribe message tacked onto the end like there is when members email one another.

is there an easy way to add this or do I need to remember to manually add it myself each time I send an email. are there any hacks for something like this?

thanks in advance
Reply With Quote
  #20  
Old 02 May 2009, 12:02
Alfa1's Avatar
Alfa1 Alfa1 is offline
 
Join Date: Dec 2005
Originally Posted by Mutt View Post
I recently sent out a mass email from the admin control panel and was surprised that there wasn't any kind of unsubscribe message tacked onto the end like there is when members email one another.

is there an easy way to add this or do I need to remember to manually add it myself each time I send an email. are there any hacks for something like this?

thanks in advance
Fortunately Kirk made this hack: Unsubscribe link in Administrative Mail
However, you still need to add a text manually, like described in my article.
Reply With Quote
  #21  
Old 12 May 2009, 19:03
Mutt's Avatar
Mutt Mutt is offline
 
Join Date: Nov 2001
Originally Posted by Alfa1 View Post
Fortunately Kirk made this hack: Unsubscribe link in Administrative Mail
However, you still need to add a text manually, like described in my article.
thanks, that's great
Reply With Quote
  #22  
Old 21 Aug 2009, 11:09
Alfa1's Avatar
Alfa1 Alfa1 is offline
 
Join Date: Dec 2005
I've updated the article. Pretty soon I will be needing a 3rd post, because there is a maximum amount of characters that can be entered.

Does anyone have questions or remarks?
Reply With Quote
  #23  
Old 23 Sep 2009, 04:40
VonDoom's Avatar
VonDoom VonDoom is offline
 
Join Date: Dec 2008
Great article, ill be going thru most of this soon. i rarely (maybe once a year) send out bulk mail. But i never considered the ramifications of members using the email to friends feature. lol reminds me to check my email account to. umm something i haven't done in a month or more.
__________________
Reply With Quote
  #24  
Old 05 Nov 2009, 17:34
cavyspirit cavyspirit is offline
 
Join Date: Jan 2004
Thanks for this thread. Great info.

Personally, knowing what I know now, I would never use the vB email system to do a mass mail and I'm glad that in all these years, I haven't used it.

I found out just how damn devastating it can be to be blacklisted as a spammer.

Unbeknown to me about a year ago, one of my lesser used CMS sites was hacked and a spammer was using my account to send out spam emails. My site ended up on email blacklists. It's not just the one email address or site that gets blacklisted, it can be your entire server along with references to any site on that server anywhere in the email. And since I do web development and host around a dozen accounts on this one server, ALL mail--incoming and outgoing from my server was being blocked by many, many providers. Business came to a screeching halt for me and my clients. At least that was my experience.

It was that tough wake-up call that forced to me to institute much more rigorous security on my environments.

In addition, I discovered this site: http://www.mxtoolbox.com/blacklists.aspx which lets you enter in your server IP and see if you are on any major email blacklists. And it helps you deal with getting off of each blacklist. AND they have a service which will send you an immediate alert if you end up on any blacklist for any reason. After setting and forgetting about it last year--after it taking almost a week to recover to being clean again--I did get one alert for a minor problem which I very quickly resolved.

Getting blacklisted once was a big-time learning experience and not a good one.
Reply With Quote
  #25  
Old 26 Nov 2009, 02:17
porcupine73 porcupine73 is offline
 
Join Date: Nov 2008
Thanks for this helpful article Alfa. I'm trying to get my board compliant with many of these items.

One quick thing I am trying is I created a new template I called email_footer1, which contains text similar to:

Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.

Then I added a plugin hooked on mail_send to hopefully append the relevant info to the bottom of all e-mails sent by vbulletin?

Block Disabled:      (Update License Status)  
Suspended or Unlicensed Members Cannot View Code.

(You don't want to know how long I spent getting that to work, especially since I had \\ instead of // for the comment )

The DKIM looks interesting. My host doesn't let me add any fields to the domain record though so it looks like I'd need to use a different DNS to put out the info
Reply With Quote
  #26  
Old 26 Nov 2009, 20:24
Alfa1's Avatar
Alfa1 Alfa1 is offline
 
Join Date: Dec 2005
Very interesting. Please let me know if this is included to all email.
Reply With Quote
  #27  
Old 05 Dec 2009, 21:13
dfidler dfidler is offline
 
Join Date: May 2008
Originally Posted by Alfa1 View Post
Does anyone have questions or remarks?
Just a remark; awesome article. Thanks for taking the time!
Reply With Quote
  #28  
Old 06 Dec 2009, 14:48
Alfa1's Avatar
Alfa1 Alfa1 is offline
 
Join Date: Dec 2005
Your most welcome. I hope IB will do something with it and implement the needed functionality to avoid such problems.
Reply With Quote
  #29  
Old 05 Apr 2010, 06:25
Biker_GA Biker_GA is offline
 
Join Date: Oct 2004
Your reference to Microsoft's tips are pretty much out of date. I've been running in circles attempting to get a delivery issue resolved with them and the majority of the addresses are no longer valid on their site.

Something I've recently run into, and many may be getting smacked for this is NDR and reverse NDR spam. I've been nailed by this recently and as a result, showed up on a blacklist.

I'm still pouring through the rules in Exim to figure out a way to minimize this. You can't really prevent it, short of turning off NDR, but then you'd be in running a mail server that doesn't conform to current mail standards. **sigh** I hate spammers.
Reply With Quote
  #30  
Old 05 Apr 2010, 21:52
Alfa1's Avatar
Alfa1 Alfa1 is offline
 
Join Date: Dec 2005
Originally Posted by Biker_GA View Post
Your reference to Microsoft's tips are pretty much out of date. I've been running in circles attempting to get a delivery issue resolved with them and the majority of the addresses are no longer valid on their site.
Please let me know what you have found to be out of date and where new mail conditions can be found. I still see the same anti-spam policy on microsoft.com I see there is new data on http://postmaster.msn.com/Services.aspx and http://postmaster.live.com/Guidelines.aspx but that doesn't seem to replace the Anti-Spam policy.

Originally Posted by Biker_GA View Post
Something I've recently run into, and many may be getting smacked for this is NDR and reverse NDR spam. I've been nailed by this recently and as a result, showed up on a blacklist.

I'm still pouring through the rules in Exim to figure out a way to minimize this. You can't really prevent it, short of turning off NDR, but then you'd be in running a mail server that doesn't conform to current mail standards. **sigh** I hate spammers.
Have you considered to limit the number of NDRs within X amount of time to a number that resembles a normal amount?

Last edited by Alfa1; 05 Apr 2010 at 22:05.
Reply With Quote
Reply

Similar Article
Article Author Type Replies Last Post
Game Board (smash board) skin miner vBulletin 3.5 Styles 24 07 Nov 2008 21:30



Currently Active Users Viewing This Thread: 1 (0 members and 1 guests)
 
Article Options

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off
Forum Jump


New To Site? Need Help?

All times are GMT. The time now is 02:48.

Layout Options | Width: Wide Color: