Mastodawn

@WPalant reverse DNS set?

@jerry
Reverse DNS: ✅
IPv6 reverse DNS: ✅

@WPalant reverse dns kept tripping me up. I think the only other thing it could be is a block list or the content of the mail itself. also, are dkim/spf set to deny?

kravietz 🦇Jan 18, 2024

@jerry

DKIM and MTA-STS reports occasionally contain useful hints why the receiving end thinks there’s something wrong with the email. Also, having your MX addresses whitelisted is important — before it was Dnswl, now I think Abusix.

@jerry I went through the Gmail rulebook years ago, multiple times. Yes, everything is set up correctly. I’ve also configured DMARC to reject invalid mails a long time ago because mine never are. Content is also unsuspicious unless you count the word “malicious” (it’s actually the notification about this comment reply: https://palant.info/2023/06/08/another-cluster-of-potentially-malicious-chrome-extensions/#c000006r000001)

But Gmail just does these things randomly. I’m pretty sure that sending the exact same email again will succeed. I just don’t care enough to try.

Another cluster of potentially malicious Chrome extensions

I discovered a cluster of at least 109 extensions in Chrome Web Store. A few are committing affiliate fraud or spying, most are simply hoarding overly wide privileges before abusing them.

Almost Secure

@WPalant there used to be a gmail security person here - I don't recall who it was nor if they're still here but I'll boost in case

@jerry Thank you, even though I don’t think this will help. Gmail is losing their fight against the spam, so they are increasingly rejecting valid mail from any servers but a few big names.

@WPalant 😅 I guess I should check whether my mail server still has deliverability

@jerry I regularly send important emails to my own Gmail account first – they frequently land in the spam folder, something that you cannot even see from the outside. If I mark it as “not spam,” this improves the chances of the actual recipient getting this mail.

Life hacks. 🙄

@WPalant I used mailgun for a while (for infosec.exchange) and ended up ditching it because the volume of emails was starting to cost a lot AND I was getting a lot of rejections, so started self hosting. Perhaps I'm just lucky or got a good IP address, but it's been working well.

@jerry Volume makes a huge difference. My server has very little volume, it’s never more than 1-2 mails per day going towards Gmail (or Microsoft which hasn’t been any less problematic). I’ve been fighting random rejections and my mails being sorted into spam for years, until I eventually gave up and started using my hosting provider’s email server as a relay. Now it’s actually way better.

Michael Potts (HMHackMaster)Jan 19, 2024

@WPalant I am gonna note this for the future when I get asked why I have so many monitoring alert emails being generated (that I don't get around to immediately resolving or silencing): keeping the mail volume from my own mail server to my Gmail/Gapps account high is keeping me on the good side of Gmail's spam filters! 🤣

@jerry

Colin the Mathmo Jan 21, 2024

This is a really useful thread that I'll want to come back to, so I'll document it for my own use.

Thank you everyone.

Calling @Chartodon Spine ...

CC: @hmhackmaster @WPalant @jerry

mangymagi:~#

Jan 18, 2024

@jerry
I'm a big self-hoster, and looking to migrate my email to self-hosted as well. What are you using as your server and what relay do you recommend?

@mangymagi I have a server running webmin/virtualmin - it’s fully self hosted - no other relay. Mailgun worked well for low volumes if you’re ok with occasionally having mail rejected.

AlisonW ♿🏳️‍🌈♾️Jan 19, 2024

@jerry @mangymagi
I've run my own mailserver from home (fixed ip) for over 20 years using a number of different OS and package options. My own thought on seeing the OP was dns but if that's set correctly then I've no idea. Just sent a message from me to Gmail and it arrived in seconds no issues.
Are the failed messages bouncing back with anything interesting in the headers?

Björn Heiker Jan 19, 2024

@WPalant @jerry that's right. 7 of 9 goes through or so

Guillaume Rossolini Jan 18, 2024

@WPalant @molly0xfff has a great write-up about this recently

There’s also domain warmup, possibly ip warmup or decay, etc

0bondo7 Jan 18, 2024

@WPalant tell me about it

XenoPhage

Jan 18, 2024

@WPalant Yes, gmail is, in fact, the worst. I've been fighting this for years. Best I can tell, there's nothing you can actually do. It magically clears itself up every so often, despite not making any changes.

⛧-440729 [sophie raven]Jan 18, 2024

@XenoPhage @WPalant Honestly I feel like microsoft has become a lot worse than gmail. They just silently sort mails into spam, sometimes even apparently discarding them entirely.

amiloradovsky Jan 18, 2024

@WPalant I've set all that except DMARC, and for TLS they've lowered the rating because "forward secrecy" (they didn't like the algorithms Let's Encrypt used for the cert)
actually I wouldn't even bother with SPF or DKIM, it's not for countering spam, but I still did for fuck's sake even though I have no reasons to send e-mail to gmail (if it's their only address, I don't want to contact them)

~n Jan 18, 2024

@WPalant @number137 At the same time: Inbox full of spam from gmail 🙄

Rose Jan 19, 2024

@WPalant better than outlook, who accepts and silently drops your message, even with all of the green checkmarks 😒

snaeqe Jan 19, 2024

@WPalant
You not being Google is a Yellow Flag to Google when delivering mail to Google.

Jim Fenton 🇺🇸🇨🇦Jan 19, 2024

@WPalant what is the reputation of your IP addresses (both v4 and v6) with Spamhaus?