Computer Tips -Tech Info

Why do I always wind up being the one to discover problems? …. Today in checking mail I found a mail that had bounced back from one of my clients that uses bellsouth… Now bellsouth has recently been bought by AT&T and it appeared as though the mail had been rejected because the mailserver trying to deliver it was in an email blacklist. *(What – a bellsouth mailserver in a blacklist?) Well, we’ve gone through this before with some of the passive blacklists where people might relay junk through their isp, but… on searching the AT&T outbound mailserver 207.115.11.54 was in the dial up block lists at sorbs and nomorefun…. (as was 207.115.11.55) These seem to be the new fmailhost04.isp.att.net and fmailhost05.isp.att.net outbound mail machines.

So, if you send mail via the old bellsouth, new AT&T you have around a 2 out of 5 chance that your mail is going out through a blacklisted server (the 01-03 machines are in a different netblock.) Ah… just discovered 06 at 207.115.11.56 – so you might have a 50/50 chance at sending mail out through a blocked ip. Now that doesn’t mean that if your mail touches one of those machines it will automatically be rejected… only by those using sorbs or nomorefun blacklists and some only use blacklists to tag mail as junk, so your bellsouth mail may wind up in junk folders instead of rejected outright.

I’ve filed a delisting request at both the blacklists in question. (REALLY THIS IS SOMETHING AT&T SHOULD BE RESPONSIBLE FOR.) I’m afraid it would take me an hour through their tech support to get to somebody that had a CLUE as to what needed to be done though. (And I don’t think I can really stomach having someone tell me…. “I’m sorry sir, I can’t help you with your mail problem if your not sitting at a computer at the location using outlook or outlook express.” (I got that response once from bellsouth when I had a remote console open on a machine that was having trouble delivering mail and I was simply trying to verify outbound machine names such as mail.bellsouth.net, etc….)

Anyway, I don’t know when this started, but the first bounce I’ve noticed was this afternoon and the addresses were previously in the dynamic ip space. Maybe someone else online has noticed as well, but you would think if you were AT&T and provisioning a new mailserver you MIGHT contact maintainers of well publicized blacklists and say… “By the way, we’re about to put new mailservers online at the following IP’s….”

OK – just got the SORBS response back and basically the answer is NO -AT&T needs to contact SORBS

http://www.au.sorbs.net/faq/dul.shtml

–update — 7-25-07–

OK – I’m seeing fmailhost03.isp.att.net at 207.115.11.53 today – so I’m ASSUMING I’ll see 02 show up at 207.115.11.52 tomorrow – they must be making the changeover this week – that IP block is STILL on the blacklist and I’m WHITELISTING about 30 mailservers as fast as I can. –Sorry 30 was an exaggeration – 10 certainly isn’t though. (Didn’t help that the first time through I forgot there was an fmailhost06……)

Gee thanks ATT – didn’t have anything else to do….

Popularity: 8% [?]

   Send article as PDF   

• Network security - how safe is your network? Looking at ARP A while back I did a network security series and one of the points that I mentioned was that it's important to know what is normal for your network. In other words, what machines are NORMALLY connected, what services are normally running, etc. Well, I'm about to start a serious......
• Another trackback spam storm overnight.... All of the the swarms of trackback spam seemed to last an hour give or take a few minutes, so it does look kind of like "rent-a-bot" activity, lots of different IP addresses, trackback spam sites seem to have a common theme - the last batch was insurance type sites..........
• Running UltraVNC viewer under wine I talked in the last entry about using UltraVNC and UltraVNC Single Click (ultravnc sc) as a means of doing remote desktop support. The idea is that you (the technical support person), setup vncviewer to listen for connections, then the end user with pc problems can download your customized ultravnc......

• Bear Mountain Ski Resort, Big Bear Lake, CA Bear Mountain Ski Resort is located in: Big Bear Lake, CA Phone: (909) 585-2519 Website: http://www.bearmountain.com/index_winter.php About the Resort: Bear Mountain Ski Resort is sumptuously appointed, and it is a true skiers paradise. This resort is known for their terrain parks and snowboarders from all over the world flock here......
• Mammoth Mountain Ski Resort, Mammoth Lakes, CA Mammoth Mountain Ski Resort is located in: Mammoth Lakes, CA Phone: (760) 934-0745 About the Resort: Mammoth Mountain Ski Resort is located in the gorgeous Sierras and this is definitely one of the nicest places to ski in the area. This is an incredibly large resort and overcrowding is never......
• New Loan Funded — Finance for an ESTABLISHED Business — $25,000 at 24% — B Credit — DTI 1392557% A new loan funded (Finance for an ESTABLISHED Business – $25,000 at 24%).  I participated via a manual bid the loan was Autofunding.  The borrower had B credit and a 1392557% DTI (unverifiable income).  As a reminder my standing orders (and manual bids) only find loans with 0 current delinquencies, 10 or less delinquencies......

Similar Posts

• Bellsouth/ AT&T mail problems
• AT&T rbl block inquiry site
• Bellsouth mail.lig.bellsouth.net server phasing out?
• More postfix spam blocking….
• Ways to deal with Junk Mail (2 of 2)

This entry was posted on Tuesday, July 24th, 2007 at 8:32 pm and is filed under Computers, Networking. You can follow any responses to this entry through the RSS 2.0 feed. You can leave a response, or trackback from your own site.