LDAP mails get greylisted

[strk]

See ​http://postgrey.schweikert.ch/help/osgeo.org.html

[robe]

is it just the ldap mailings being greylisted. It's unclear to me from that page if our mail server is doing the greylisting of mail.osgeo.org is doing it

[strk]

I believe it's the *recipient* mail server greylisting mail sent from the ldap tools (possibly because they are not using authenticated SMTP)

[robe]

strk why don't we seem to have this issue with the other servers or are we having the same issue with mail servers. I'm hosted on gmail and seem to have been getting emails fine.

[strk]

Jayenashar just reported on IRC that he's getting a similar report from gmail-smtp-in.l.google.com with a reference to this link: ​https://support.google.com/mail/answer/81126#authentication

[robe]

I added a DMARC record with policy just monitor and will send to osgeo sysadmins. DKIM I think we need to make changes to mail server config too to put that in place so haven't done that yet.

[robe]

okay the dmarc thing is getting a bit noisy and I'm not clear what the reports are telling me. I'm planning to switch the email to go to a different mail address so it doesn't annoy sysadmins. Right now I have it set to go to sysadmins+dmarc but that means all osgeo sysadmins are getting it. I'll set up a separate alias for it and send it to that so as to not annoy everyone.

At a glance all the dmarc notices are being generated from lists.osgeo.org and claiming we are sending on behalf, but doesn't tell me which emails triggered. It just tells me the domains and many appear to be gmail and microsoft hosted.

[robe]

I've added a new mail alias dmarc and have only me on that list. Others who want to get those notices can add themselves.

[robe]

on a side note I think we are running postgrey to minimize on spam -- per ​https://wiki.osgeo.org/wiki/Postgrey

We should review those settings as part of this ticket.

[robe]

Not sure it matters but I noticed that lists.osgeo.org, osgeo6.osgeo.osuosl.org, mail.osgeo.osuosl.org were in postfix config relay hosts lists. But not mail.osgeo.org. So I added it and restarted postfix on osgeo6. Did a quick test to mantra to make sure I didn't break anything.

[jayenashar]

is there any update on this? many times i send the mantra to people but they don't receive it because they use gmail.

[strk]

jayenashar how does your sending email to mantra seekers involve the OSGeo SMTP ? Are you sending mails with a Sender in the @osgeo.org domain ?

[robe]

No update yet sorry. Hoping to get back to this this weekend. Been tied up with setting up new server and dealing with download performance.

[robe]

To strk's point. I understand that when you send to mantra@… that may be blocked since it goes thru osgeo to send to people. But it's unclear to me why when you are cc'ing or sending directly to a gmail address why that should be blocked.

FWIW I think I get all your emails when you send a mantra, and my domains are on gmail.

[strk]

I understand that when you send to mantra@… that may be blocked since it goes thru osgeo to send to people.

But in his case he's sending directly to the mantra seeker, so they should get the mail UNLESS Google thinks the SMTP server he uses is not a legit one to send mail on his behalf. Is that correct ?

[jayenashar]

ok maybe you are right. i'm just confused because i send the mantra, then another admin asks for more info, then the requester replies to the other admin, seemingly as if they didn't get my message. this is happening multiple times that's why i thought the requester isn't getting my email, but you are right. there is no reason they shouldn't get my email.

[robe]

closing this out as we've made a number of changes in osgeo6 mail and upgrading the server that should have addressed these issues.