Bug 275409
| Summary: | Spam is pouring in from the FreeBSD's mail server | ||
|---|---|---|---|
| Product: | Services | Reporter: | Yuri Victorovich <yuri> |
| Component: | Core Infrastructure | Assignee: | postmaster |
| Status: | Closed Works As Intended | ||
| Severity: | Affects Only Me | CC: | lwhsu, philip, pi |
| Priority: | --- | ||
| Version: | unspecified | ||
| Hardware: | Any | ||
| OS: | Any | ||
|
Description
Yuri Victorovich
2023-11-28 17:46:12 UTC
(In reply to Yuri Victorovich from comment #0) No changes as far as I know. Can you provide 1-2 samples somewhere for postmaster@ to have a look at ? (In reply to Kurt Jaeger from comment #1) Here is the sample of 53 messages: https://people.freebsd.org/~yuri/freebsd-mail-spam-sample (In reply to Yuri Victorovich from comment #2) On first look this might be backscatter: Someone uses your email from other mailservers to spam folks, they reject and you receive the backscatter. Postmaster needs to look into more detail. Nothing has changed in our configuration. This time of year is always busy for spam. North America celebrates a "shopping holiday". You're seeing more spam because it's addressed to your alias. On average, most spam is addressed to the mailing lists, where the subscription filter is a second line of defence if the message isn't spammy enough to be dropped by rspamd. I'll have a look if there's anything I can tune, but I suspect it's (a) not worth it and (b) too late. Now my e-mails from yuri@FreeBSD.org don't go through. Mail servers reject them say that the sender is blacklisted. The whole FreeBSD.org domain might be blacklisted, and all senders might be affected. There is spam threat evaluation service called "SpamHaus" that also causes their rejection. FreeBSD.org is not listed on any of the lists monitored by MultiRBL: https://multirbl.valli.org/lookup/freebsd.org.html Are you sending through smtp.FreeBSD.org? (In reply to Philip Paeps from comment #6) No, I use the SMTP server of my own provider. My e-mails are rejected by gmail.com, yandex.com and yahoo.com Does FreeBSD run any spam filters on the incoming mail? Yes, rspamd and postscreen (In reply to Kurt Jaeger from comment #10) I an sure that my regular e-mail address is also used in spamming but my regular e-mail provider filters backscatter out very effectively. The backscatter from the FreeBSD-based e-mail doesn't get filtered though. I am wondering what is the difference. (In reply to Yuri Victorovich from comment #11) Who is your regular mail provider ? rawbw ? (In reply to Kurt Jaeger from comment #12) Yes, RawBW. Is there anything actionable in this ticket? If not, I would like to mark it as "works as intended". Nothing has changed in our configuration and mail seems to be working well for everyone else. We can try to help Yuri debug his configuration offline, but I don't think we need to archive that discussion in Bugzilla. (In reply to Philip Paeps from comment #14) But I don't have any configuration, it's just spam that is coming into my mailbox. The SMTP change that you've suggested isn't relevant for this matter because SMTP isn't involved on my side. The mail gets dropped into my mailbox from FreeBSD through SMTP, and I retrieve it using IMAP. If rawbw is really handling backscatter, and we don't, then it might be interesting to learn from them. Backscatter could be detected by matching incoming backscatter message ids to the message-ids that were sent via fbsd mail infra before. If the message-id is unknown, it's backscatter. This sounds like a difficult change to implement, so I agree, we should close this report for now. |