Geekzone: technology news, blogs, forums
Guest
Welcome Guest.
You haven't logged in yet. If you don't have an account you can register now.


ForumsOff topicNZTA Email server broken config?
lmnop

22 posts

Geek
+1 received by user: 8


#311381 10-Jan-2024 23:28
Send private message

 

Am I right in thinking that NZTA emails are coming from a non existent hostname (mailadc.ltweb.unisys.co.nz) which is why I never get any emails from them anymore?

 

 

Create new topic
yitz
2240 posts

Uber Geek
+1 received by user: 594


  #3180283 10-Jan-2024 23:50
Send private message

Typically it is only the reverse DNS (PTR) record that is matched.



lmnop

22 posts

Geek
+1 received by user: 8


  #3180284 10-Jan-2024 23:56
Send private message

 

I thought mail servers were set up to refuse HELO from hostnames that don't resolve, to reduce spam?

 

 

muppet
2649 posts

Uber Geek
+1 received by user: 1672

Trusted

  #3180313 11-Jan-2024 06:21
Send private message

lmnop: I thought mail servers were set up to refuse HELO from hostnames that don't resolve, to reduce spam?

 

Any decent anti-spam system will use this as one of hundreds of heuristic decision making points.  Rejecting mail on this one thing along would be extremely boneheaded.

 

I have no doubt that some mail admins reject on it alone, but they shouldn't.



SirHumphreyAppleby
2943 posts

Uber Geek
+1 received by user: 1866


  #3180314 11-Jan-2024 06:33
Send private message

muppet:

 

I have no doubt that some mail admins reject on it alone, but they shouldn't.

 

 

Rejecting on this alone used to be quite common practice in the early '00s. These days, more weighting should be given to SPF and DKIM and such bonehead mechanisms not used.

 

It is explicitly permitted to use address literals in HELO/EHLO and further, "SMTP systems are expected to make every reasonable effort to accept mail directed to Postmaster from any other system on the Internet". Blocking at the very first step violates that requirement IMO.

BlakJak
1330 posts

Uber Geek
+1 received by user: 735

Trusted

  #3184409 20-Jan-2024 14:16
Send private message

yitz:

Typically it is only the reverse DNS (PTR) record that is matched.

 

 

In this case the sender IP 202.12.0.33 (in the sample I have) does have a PTR pointing to mailkdc.ltweb.unisys.co.nz and this is clearly being given in the HELO/EHLO:

 

 

Received: from Mailkdc.ltweb.unisys.co.nz ([202.12.0.33])

 

 

I'd say it's probably poor practice, but not a on its own a reason to decline to receive an email.. as others have noticed it's one of many measures but quite clunky by today's standards.

 

 

I have a contact at NZTA and will give them some feedback ;-)

 




No signature to see here, move along...

Create new topic








Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.


Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.








RSS feeds
Main feed
Forums feed
Copyright
©2002-2026 Geekzone®
Site features
Geekzone BI dashboard
Geekzone Badges
Geekzone Status Page

 

Site Information
Subscribe to Geekzone
Privacy Statement
Forum Usage Guidelines (FUG)
Advertising
Trademark and copyright