cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

Spam tsunami

jkg
Grafter
Posts: 77
Thanks: 8
Registered: ‎18-12-2007

Spam tsunami

Saturday

It seems to me strange to converse in a Plusnet forum when discussing Greenby email, but here goes.
What's the point of the Blacklist feature?

My mailbox, is also setup as 2 separate forwarders.
The mailbox receives about 10 emails a day in addition to about 100 SPAM - the Blacklist seems totally ineffective.
Forwarder #1 forwards via a Cloudflare redirect to a Gmail account, Cloudflare is not delivering (is blocking) the SPAM.
Forwarder #2 is direct to the Gmail account that successfully identifies about 90% of the SPAM.
The 2 forwarded emails are not duplicated, as I suspect Gmail is treating identical message IDs as one message.
Message 1 of 4
(179 Views)
Reply
3 REPLIES 3
PhilipHeyes
Seasoned Pro
Posts: 580
Thanks: 202
Fixes: 6
Registered: ‎10-11-2021

Re: Spam tsunami

Saturday

I'm having success with an MS Outlook filter to detect spam based on the message header contents.

I move the new message to Junk if the email header contains any of :

dkim=fail
dmark=fail
spf=fail
spf=softfail
( unknown[
BAYES_SPAM(5.
HFILTER_HOSTNAME_UNKNOWN
RDNS_NONE
.shop
.click


Message 2 of 4
(170 Views)
Reply
M-M
Hooked
Posts: 5
Registered: ‎07-05-2022

Re: Spam tsunami

Saturday - last edited Saturday

Hi all,

 

I see also a lot of SPAM lately on my Plusnet email mailboxes.  When I check the IPs sendong it they are all listed in spamhaus as bad senders.  Why is Plusnet not blocking bad senders which I thought was the default setting ?

 

The default setting description says:   

With spam filtering turned on, emails sent from mailservers with a bad SenderBase reputation will be rejected and bounced back to the sender. Emails that pass this first check are scanned and given a spam rating. What happens then depends on the settings which follow.

 

Also I would be curious what "block obvious spam" means I would hope any email from known spam mailservers.

 

Anyone from Plusnet on these forums to explain this ? 

 

Also Plusnet's mail servers are on the blacklists 😞  

# nslookup 212.159.14.26
26.14.159.212.in-addr.arpa name = avasin-peh-006.plus.net.

Authoritative answers can be found from:

#./dnsblcheck 212.159.14.26
Checking: 212.159.14.26
-------------------------
[LISTED] 212.159.14.26 on zen.spamhaus.org
[OK] 212.159.14.26 not listed on bl.spamcop.net
[OK] 212.159.14.26 not listed on b.barracudacentral.org
[OK] 212.159.14.26 not listed on dnsbl.sorbs.net
[LISTED] 212.159.14.26 on cbl.abuseat.org
[OK] 212.159.14.26 not listed on psbl.surriel.com
[OK] 212.159.14.26 not listed on dnsbl-1.uceprotect.net

 

Markus

 

 

Message 3 of 4
(105 Views)
Reply
0 Thanks
M-M
Hooked
Posts: 5
Registered: ‎07-05-2022

Re: Spam tsunami

yesterday

Small correction the SPAM listing for  212.159.14.26 is wrong i.e. I used cloudflare's 1.1.1.1 DNS server which gets worng responses. Using unbound I get  a clean response.

 

/dnsblcheck 212.159.14.26
Checking: 212.159.14.26
-------------------------
[OK] 212.159.14.26 not listed on zen.spamhaus.org
[OK] 212.159.14.26 not listed on bl.spamcop.net
[OK] 212.159.14.26 not listed on b.barracudacentral.org
[OK] 212.159.14.26 not listed on dnsbl.sorbs.net
[OK] 212.159.14.26 not listed on cbl.abuseat.org
[OK] 212.159.14.26 not listed on psbl.surriel.com
[OK] 212.159.14.26 not listed on dnsbl-1.uceprotect.net

 

Markus

Message 4 of 4
(44 Views)
Reply
0 Thanks