People not getting web store emails

[Badwolf]

You mean this.. ?

Yeah. That's not working.

BW

[exxos]

Yeah. That's not working.

Maybe it will magically start working in a few hours time :shrug:

[exxos]

oh...

Code: Select all

sudo opendkim-testkey -d exxoshost.co.uk -s default -vvv
opendkim-testkey: using default configfile /etc/opendkim.conf
opendkim-testkey: checking key 'default._domainkey.exxoshost.co.uk'
opendkim-testkey: key not secure
opendkim-testkey: key OK

If you see Key not secure in the command output, don’t panic. This is because DNSSEC isn’t enabled on your domain name. DNSSEC is a security standard for secure DNS query. Most domain names haven’t enabled DNSSEC.

Code: Select all

host -t any default._domainkey.exxoshost.co.uk
default._domainkey.exxoshost.co.uk descriptive text "v=DKIM1\; k=rsa\; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklxL/jc94pBcmiBhJjsJG5SEPa0MQUAClcl/pb6/5G1DqSqCb4VB0RdkZIBAkmvEkw1QU........

[xyzzy76]

I noticed you're using the bare domain for your mail server (exxoshost.co.uk)

Try using mail.exxoshost.co.uk as your mail server name, and set the PTR record to this as well.

220 exxoshost.co.uk ESMTP Postfix (Ubuntu) [235 ms]
EHLO keeper-us-east-1c.mxtoolbox.com
250-exxoshost.co.uk

[Badwolf]

oh...

Code: Select all

host -t any default._domainkey.exxoshost.co.uk
default._domainkey.exxoshost.co.uk descriptive text "v=DKIM1\; k=rsa\; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAklxL/jc94pBcmiBhJjsJG5SEPa0MQUAClcl/pb6/5G1DqSqCb4VB0RdkZIBAkmvEkw1QU........

Certainly seeing something there now. Cool. Those mail testers will tell you if it's the *right* thing, though . ;-)

BW

[derkom]

I noticed you're using the bare domain for your mail server (exxoshost.co.uk)

Try using mail.exxoshost.co.uk as your mail server name, and set the PTR record to this as well.

I think this is sound advice, and also I think a big clue to the real cause of the problem lies in the example they gave of "generic" hostnames:

Screenshot 2021-05-06 at 20.56.03.png

I bet what's happening here is they have some kind of pattern matching going on that thinks "exxoshost.co.uk" is generic hosting provider reverse DNS, because of the string "host" existing in the domain name. Depending on how they have their regular expression setup, tacking a hostname on the front as @xyzzy76 suggests may well stop it from tripping their "generic" pattern match.

[exxos]

They are all already setup though..

2.PNG

[xyzzy76]

Something like:

Code: Select all

postconf -e 'myhostname = mail.exxoshost.co.uk'

[exxos]

Something like:

Code: Select all

postconf -e 'myhostname = mail.exxoshost.co.uk'

ok ill change it.

[Badwolf]

I bet what's happening here is they have some kind of pattern matching going on that thinks "exxoshost.co.uk" is generic hosting provider reverse DNS, because of the string "host" existing in the domain name. Depending on how they have their regular expression setup, tacking a hostname on the front as @xyzzy76 suggests may well stop it from tripping their "generic" pattern match.

To be fair, that alert was triggered by 12.101.4.84.rev.sfr.net rather than exxoshost.co.uk, which it became later.

Changing it means also changing the other infrastructure to match (MX record, for example) as most mailers will now check forward, reverse and MX match.

BW