spamassassin-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From David Jones <djo...@ena.com>
Subject Re: question re/ RDNS_NONE
Date Sat, 21 Nov 2015 15:35:54 GMT
>From: Matthias Apitz <guru@unixarea.de>
>Sent: Saturday, November 21, 2015 9:15 AM
>To: spamassassin-users
>Subject: question re/ RDNS_NONE

>Hello,

>I've sent myself an email which gets marked with RDNS_NONE. Can someone
>please be so kind and explain to me which IP addr exactly triggers this
>RDNS_NONE qualification? Thanks in advance.

 >       matthias

>----- Forwarded message from Matthias Apitz <guru@unixarea.de> -----

>X-Spam-Checker-Version: SpamAssassin 3.4.0 (2014-02-07) on c720-r276659
>X-Spam-Level: *
>X-Spam-Status: No, score=1.3 required=3.0 tests=RDNS_NONE autolearn=no
>        autolearn_force=no version=3.4.0
>X-Spam-Report: +
>        *  1.3 RDNS_NONE Delivered to internal network by a host with no rDNS
>Received: from c720-r276659 (c720-r276659 [127.0.0.1])
>        by localhost.unixarea.de (8.14.9/8.14.9) with ESMTP id tALF46JP002771
>        for <guru@localhost>; Sat, 21 Nov 2015 16:04:06 +0100 (CET)
>        (envelope-from guru@unixarea.de)
>Delivered-To: <w51246_0-guru@mb-19.1blu.de>
>Received: from imap.1blu.de [178.254.4.77]
>        by c720-r276659 with IMAP (fetchmail-6.3.26)
>        for <guru@localhost> (single-drop); Sat, 21 Nov 2015 16:04:06 +0100 (CET)
>Received: from ms-10.1blu.de ([178.254.4.101])
>        by mb-19.1blu.de (Dovecot) with LMTP id hf3FGWyHUFa9UgAAYCFinw
>        for <w51246_0-guru@mb-19.1blu.de>; Sat, 21 Nov 2015 16:03:00 +0100
>Received: from [93.104.16.254] (helo=localhost.unixarea.de)
>        by ms-10.1blu.de with esmtpsa (TLS1.0:DHE_RSA_AES_256_CBC_SHA1:32)
>        (Exim 4.76)
>        (envelope-from <guru@unixarea.de>)
>        id 1a09gq-0007RE-0t
>        for guru@unixarea.de; Sat, 21 Nov 2015 16:03:00 +0100
>Received: from localhost.my.domain (c720-r276659 [127.0.0.1])
>        by localhost.unixarea.de (8.14.9/8.14.9) with ESMTP id tALF2wlq002757
>        (version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-GCM-SHA384 bits=256 verify=NO)
>        for <guru@unixarea.de>; Sat, 21 Nov 2015 16:02:58 +0100 (CET)
>        (envelope-from guru@unixarea.de)
>Received: (from guru@localhost)
>        by localhost.my.domain (8.14.9/8.14.9/Submit) id tALF2wpa002756
>        for guru@unixarea.de; Sat, 21 Nov 2015 16:02:58 +0100 (CET)
>        (envelope-from guru@unixarea.de)

Read the Received headers from the bottom up.

Received: from [93.104.16.254] (helo=localhost.unixarea.de)

This IP has a lot of issues and will always hit RDNS_NONE because there is no way
to make the FCrDNS check pass to match the SMTP HELO of localhost.unixarea.de.
It's also on a lot of RBLs so your outbound mail delivery is going to be very unreliable:

http://multirbl.valli.org/lookup/93.104.16.254.html

Research FCrDNS.  It's like "caller ID" for mail servers to prove the sender is a legit
mail server.  Mail servers that talk directly to the Internet should be on a dedicated IP
with a dedicated DNS entry so the A record and PTR records match the SMTP HELO.

I guess you could make the FCrDNS work somewhat by setting the SMTP HELO to
ppp-93-104-16-254.dynamic.mnet-online.de.  It's still on a lot of RBLs.

Dave
Mime
View raw message