[kwlug-disc] Anyone know how to set up DNSSEC?

Fernando Duran liberosec at yahoo.ca
Thu Feb 6 14:42:44 EST 2014


Here are some tips to avoid your messages being flagged as spam:
http://rimuhosting.com/knowledgebase/linux/mail/mail-not-going-through

 
--------------------- 
Fernando Duran 
http://www.fduran.com



> On Thursday, February 6, 2014 8:18:30 AM, Jonathan D. Poole <jpoole at digitaljedi.ca> wrote:
> > FWIW, 
> 
> Gmail gives you a nice 'mailed-by' and 'signed-by' header for 
> the mere
> simplicity of "Hrmm I got a message, is it legit?" question that arise 
> when
> determining messages as spam/bulk/etc
> 
> DMARC Analyzer (www.dmarcanalyzer.com) can give you a fairly good outlook of
> how your 'alignment'  sits with use of your DKIM, SPF, DMARC setup.
> 
> Experimental as it may be, to protect your domain from unauthorized
> forgery/phishing from external sources and ensuring emails that you do send
> are legitimate, it makes sense to do it.
> 
> 
> -----Original Message-----
> From: kwlug-disc [mailto:kwlug-disc-bounces at kwlug.org] On Behalf Of Bob
> Jonkman
> Sent: Thursday, February 06, 2014 3:53 AM
> To: KWLUG discussion
> Subject: Re: [kwlug-disc] Anyone know how to set up DNSSEC?
> 
> -----BEGIN PGP SIGNED MESSAGE-----
> Hash: SHA1
> 
> DKIM (RFC 6376 or STD 76) is still optional for SMTP mail delivery, and SPF
> (RFC 4408) is still considered an experimental protocol.
> Rejecting a message based on failure (or absence) of SPF is overly
> aggressive, and contrary to DKIM ("signature verification failure does not
> force rejection of the message"). At best, a message's (lack of) 
> conformance
> to DKIM and SPF could be used as a weighting factor to determine its
> spamminess.
> 
> There's no benefit to you to sign your outgoing messages, at least until
> servers start rejecting messages (which makes them non-conformant to
> standards). Of course, there is the network effect that if everyone does
> DKIM/SPF then the world will be a better place.
> 
> The only time my mail server has ever received a delivery failure
> notification for not having DKIM or SPF entries was when I tried to
> subscribe to the GNUsocial mailing list. Of course, I don't know how many
> mail servers are silently dropping my non-DKIM/SPF messages, but that's
> contrary to standards too.
> 
> TL;DR: Don't worry about it.
> 
> - --Bob.
> 
> https://tools.ietf.org/html/rfc6376
> 
> https://tools.ietf.org/html/rfc4408
> 
> 
> 
> 
> On 14-02-06 02:53 AM, Chamunks Arkturus wrote:
>>  I'm sorry to have mislead I'm fairly comfortable with the command 
> line 
>>  I just use ubuntu server 12.04x lts for my main distro.  I definitely 
>>  don't have the regex capabilities or understanding that most of the 
>>  guys here were raised up through.  Granted I do like gui's in some 
>>  sense that it helps me wrap my head around some concepts like I'm 
>>  attempting to wrap my head around using ldap via phpLDAPAdmin BUT this 
>>  is not the thread for this.  So before I derail my own thread.  Is 
>>  there more information that I should hear about this situation?
>> 
>> 
>> 
>>  _______________________________________________ kwlug-disc mailing 
>>  list kwlug-disc at kwlug.org 
>>  http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
>> 
> -----BEGIN PGP SIGNATURE-----
> Version: GnuPG v1.4.14 (GNU/Linux)
> Comment: Ensure confidentiality, authenticity, non-repudiability
> 
> iEYEARECAAYFAlLzTXoACgkQuRKJsNLM5ergmwCgki1frovhgo19qTDYIU9+ZzLz
> B9kAoN0eoWTBKEG7kjosYtCBb5uzxIyx
> =Y9/1
> -----END PGP SIGNATURE-----
> 
> 
> 
> _______________________________________________
> kwlug-disc mailing list
> kwlug-disc at kwlug.org
> http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
> 
> 
> 
> _______________________________________________
> kwlug-disc mailing list
> kwlug-disc at kwlug.org
> http://kwlug.org/mailman/listinfo/kwlug-disc_kwlug.org
> 





More information about the kwlug-disc mailing list