New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
MXroute Black Friday Deals - Bring Your Own Domain Email Service!
This discussion has been closed.
Comments
IMO letting through some spam is better than rejecting legit mail.
Lately, I had some contacts who couldn't contact me, their messages (sent from reputables providers) being rejected...
This did not happen few months / years ago.
Was 5, 6 now..
They emails from servers that should have been whitelisted though.
The other admin must have changed that setting if 5 wasn't the default.
Big changes were made at the end of November and/or beginning of December.. The technical details are on one of the previous pages..
I guess the real technical details are: https://github.com/mxroute/da_server_updates/commits/master/exim/susranges and https://github.com/mxroute/da_server_updates/commits/master/exim/susranges_whitelist (which means that more than 300 million IP addresses are blacklisted).
It happens every single day to someone. The new system temporarily disproportionately impacted users from Greece, a little increase in France, but causes no more false positives overall than any other deployment ever has. However, unlike past deployments, we can permanently fix it if it wasn't caught already. In the past with somewhat effective spam filtering deployments we just had to water down the filtering gains until there really weren't any, and then explain to all of the users complaining about inbound spam why we reversed the changes that were helping them.
If you need to open a support ticket, please do.
That's heavy false positive range. To get the best result based on my work, look for the bold recommended settings under each item here: https://mxroutedocs.com/directadmin/spamfilters/
The vast majority of the IP addresses in the world do not run mail servers, and only connect to mail ports to either:
The susranges system allows #2 but blocks #1. When a MSP or individual non-spam mail server exists in an IP range that either largely doesn't host non-spam mail servers or otherwise mostly hosts spam mail servers, that's what the whitelist is for (and no it typically does not require requests for additions, they are almost all found and added at the same time a range is added to the other list). We're effectively mapping the internet for email here, to call it a blacklist contains implications that aren't an accurate description. An IP or range being listed there isn't a statement that it's a bad range, it's a statement that either it isn't expected to host non-spam mail servers or that it hosts so few relative to the size of the ASN/ranges that we've whitelisted the good and merely not whitelisted the unknown/residential. It's expected that mapping the internet is going to create a huge number of entries in a list.
There is literally nothing I can do that will not upset anyone. Every single action will cause at least a minimum number of complaints. The goal is to stay at or below the number of complaints we get from doing absolutely nothing (the minimum complaint threshold). If Google can start blocking just about everything that lacks DKIM causing massive levels of legitimate email to be rejected, while getting virtually no shit for it, then I can cause less problems for far less people while working toward even less than that, by doing something that solves the majority of customer complaints.
MXroute is going to be the industry leader on inbound spam filtering and there is nothing that anyone can do to stop it. That I can do it while upsetting less users than would be upset about inbound spam if I did nothing at all, while forcing that number down without reducing the filtering gains, is how I know it's my best work so far. If my work was causing a problem for a significant number of users, and more specifically if it was causing a problem for more users than appears to be the least number of users we can cause problems for by doing literally anything at all, then I would stop. But it isn't. There will always be a minimum number of users inconvenienced by literally anything that could possibly happen, including nothing, and the goal is to not rise far above that number. I am confident that I am below that number already, and the number is rapidly shrinking.
Spammers are taking notice, and they are the ones most upset by my recent changes to inbound filtering. I can see them scrambling to pick up the pieces because they were really enjoying the freedom to reach our customers. It won't be long before they're pretending to be customers just to try to use social pressure to force me to back down. They'll do anything to protect their revenue streams. They've been hitting my personal inbox a lot more in the last couple of weeks in what I believe is an attempt to discourage me and say "See, you can't stop me." But it only informs me more, and increases my resolve.
Thank you! I will admit that I sometimes question the documentation when the screenshots don't match the provided manuals.
The note about adding to spam assassin for 1 email is something the other admin I work with is bad for, more habits to break..
Yeah I think I'm just going to use less screenshots in the next docs. I'm sorry about these. You can see the staging for the new docs if you want: https://docs.mxroute.com (not done yet by a long shot)
There’s a user on our platform that receives roughly 10-15 spam email per minute, every day. Spam that passes SpamAssassin rules like a hot knife slicing through butter. With these latest efforts, they now receive closer to 1 spam every 2 minutes.
Dude needs to change his address. Full. Stop.
It’s an issue I’ve referred to many times but I don’t think most who read it ever believed me. Having a catch all with poor spam filters for too long can have this impact. Could take years, might even take a decade, but once it happens you’re pretty much just a honeypot.
I've had a catchall with gmail for like 15 years. Spam box is still sub 3 per week. I don't have it on a public website or used for public business, so that could be the difference. I imagine likely addresses like "[email protected]" gets shitloads on a daily basis.
I use unique addresses per service, so I assume spammers do some basic filtering so their list isn't immediately identified. Otherwise, once an email gets frequent spam, change it at service and then time to add a rule to forever delete the previous address.
Your suggestion is to not use a catch-all or your suggestion is to use a catch-all with good spam filtering?
Once you're a honeypot, there's no good fix?
And this customer you referenced who was getting 10-15/minute (now down to 1 every 2 minutes), got to that point due to his use of a catch-all?
I would tend to think that if you use a catch-all to go to a designated mailbox only (i.e. [email protected]), then it shouldn't affect the other mailboxes on your domain.
It’s luck of the draw, but the problem is you’re not really in control of it. Spammers like large working recipient lists and can even make money selling them, so if I can generate 50,000 recipients on your domain that accept email then I have a more valuable list and it cost me nothing. That’s the best I’ve figured for how it happens. Because when it does, it’s absolute insanity and you can only mitigate it by disabling the catchall or having spam filters better than any I’ve seen to date.
No one thinks it’ll happen to them but I can’t imagine the people I’ve seen it happen to thought they were asking for it. Might be one in a hundred thousand kind of odds, but it seems like you never truly recover unless you ditch the domain.
I keep getting French customs paperwork sent to me to one of my domains. I think someone misread an "r" and an "n". I've replied back for a decade letting them know, but nobody ever responds. Fuck them if their products get held at the French border.
Sorry, that's probably me, but it's not spam. They're emails from future friends. I My friend thoughtfully advertises my email address inside every bathroom stall they enter.
You need an autoscheduling responder. Get laid for years.
Jokes aside, I've been using MXroute for my primary for just under a decade now. I did a double take when I checked my notes because time sure flew by!
In reflecting on my experience and trying to present as complete a perspective as I can, I have no concerns or complaints because @jar has been nothing less than solid provider. I greatly appreciate not having to worry about the reliability of my email provider, and he has also been very kind and considerate, even helping me out in a stressful situation when he had absolutely no obligation to do so.
My interactions with @jar have made it clear that he is exactly the kind of person/business owner I want to support, do business with, and succeed. There are a lot of a55h0les out there running businesses; I'm happy to confirm that @jar isn't one of them.
Since I work in a non-tech-based industry and have been screwed over by a variety of service providers and businesses more times than I care to count, I'm hesitant with recommending any business. Having said that, I've been recommending MXroute to people IRL and online for many years because of my complete confidence in his integrity and how he routes his ship (pun fully intended).
I greatly appreciate you friend. I want to keep increasing the value without increasing the price. I want you to feel better about your choice every year than the previous.
I meant to introduce @Opie with this thread initially but I forgot, and it’s been a stressful few weeks! But we’ve added @Opie to our team and I think you’ll see that MXroute is thriving and continuing to move forward.
Is it possible to have a custom domain login page for MXRoute? Like user can go to mail.domain.com to login to web mail, and they don't need to enter the part @domain.com, just the username and password.
And then also mailadmin.domain.com for MXRoute administration of that domain?
And also is it possible to have custom branding on these pages? That would be great!
The webmail. subdomain definitely has the branding. Haven't tried a login without the domain yet.
Port 2222 should provide the admin portal login, and you can assign create a mailadmin. certificate
While not exactly what you’re looking for, this is the closest to it for sure: https://mxroutedocs.com/branding/crossbox/
It’s likely that I won’t work on any more custom branding features for at least the first half of the year, as I’d like to have something more intuitive and attractive to brand than most of what we have.
I have finally paid and joined you in the fight.
Guys… Guys! GUYS!
I finally did it. I moved one of my domains to one of my three idle MXRoute accounts!
LOL
I've got 10 months to transfer all of my domains from MXRoute to, erm, MXRoute. I might make it.
Well, it only took me four years, so you might make it.
Just got another idler.
Welcome to the club
Me too, from the Xmas megathread. At this rate, we'll have more disk space on MXRoute than jar