Another Hotmail Spam Problem, but with a RFC Headers included! So lets solve it :)

J

janton

Verified User
Joined
Sep 17, 2009
Messages
145
Hey All,

I noticed some users get my mail in there spam directory... i use php mail function with Drupal to send user password or confirmation.

I think the problem is I have domain.nl and domain.com, the php mail is send from the domain.com but the server is called domain.nl

is this RFC wrong? and what should i change in php.ini or some other mail settings?


Code: 
Delivered-To: [email protected]
Received: by 10.68.58.5 with SMTP id m5cs211533pbq;
        Thu, 10 Nov 2011 01:23:51 -0800 (PST)
Received: by 10.14.4.196 with SMTP id 44mr486590eej.224.1320917029707;
        Thu, 10 Nov 2011 01:23:49 -0800 (PST)
Return-Path: <[email protected]>
Received: from vps1.domain.nl ([22.22.22.251])
        by mx.google.com with ESMTPS id l52si388512eel.199.2011.11.10.01.23.49
        (version=TLSv1/SSLv3 cipher=OTHER);
        Thu, 10 Nov 2011 01:23:49 -0800 (PST)
Received-SPF: pass (google.com: domain of [email protected] designates 22.22.22.251 as permitted sender) client-ip=22.22.22.251;
Authentication-Results: mx.google.com; spf=pass (google.com: domain of [email protected] designates 22.22.22.251 as permitted sender) [email protected]
Received: from janton by vps1.domain.nl with local (Exim 4.72)
	(envelope-from <[email protected]>)
	id 1ROQrM-0005Lu-Vb
	for [email protected]; Thu, 10 Nov 2011 10:23:49 +0100
Date: Thu, 10 Nov 2011 10:23:48 +0100
Message-Id: <[email protected]>
To: [email protected]
Subject: domain Account details for test.person+test40 at domain.com
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8; format=flowed; delsp=yes
Content-Transfer-Encoding: 8Bit
X-Mailer: Pressflow
Errors-To: [email protected]
From: domain <[email protected]>



If this could not be the case.. if thise RFC is setup correct, could it be that i'm blocked because i had some fake user registrations from hotmail accounts.. so the script sended username/password to a not existing hotmail account.. this maybe happend a 100 times.. i think
 
Here a RFC from a testing hotmail account:

Code: 
x-store-info:sbevkl2QZR7OXo7WID5ZcVBK1Phj2jX/

Authentication-Results: hotmail.com; sender-id=temperror (sender IP is 22.22.22.251) [email protected]; dkim=none header.d=domain.com; x-hmca=none

X-Message-Status: n:0:n

X-SID-PRA: domain <[email protected]>

X-DKIM-Result: None

X-AUTH-Result: NONE

X-Message-Delivery: Vj0xLjE7dXM9MDtsPTE7YT0xO0Q9MTtHRD0xO1NDTD0w

X-Message-Info: NhFq/7gR1vQtkGXc7BCNdnSXGZsGxhtl1mOOygPW14dklo44lZdEyuktJ+L7fD3XxewtfG6haT8NKMxD0RegK2Itxe5z8AjEoD4oAtp7Rr+5TVcDyEFpmWY+Gg1DkyKpNRJwMpDcueo=

Received: from vps1.domain.nl ([22.22.22.251]) by COL0-MC4-F32.Col0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4900);

	 Thu, 10 Nov 2011 02:26:58 -0800

Received: from janton by vps1.domain.nl with local (Exim 4.72)

	(envelope-from <[email protected]>)

	id 1RORqU-0005mg-B6

	for [email protected]; Thu, 10 Nov 2011 11:26:58 +0100

Date: Thu, 10 Nov 2011 11:26:58 +0100

Message-Id: <[email protected]>

To: [email protected]

Subject: domain Account details for snel999 at domain.com

MIME-Version: 1.0

Content-Type: text/plain; charset=UTF-8; format=flowed; delsp=yes

Content-Transfer-Encoding: 8Bit

X-Mailer: Pressflow

Errors-To: [email protected]

From: domain <[email protected]>

Return-Path: [email protected]

X-OriginalArrivalTime: 10 Nov 2011 10:26:59.0201 (UTC) FILETIME=[474B0710:01CC9F93]



strainge thing is.. this was a hotmail i created to test, but here i just got it in my Inbox and not my Spam.. what seems correct, but somehow i still get users saying they get it in there spam box..
 
I just got a RFC from a costumer who had this mail in his spam, it looks like this:


Code: 
-store-info:4r51+eLowCe79NzwdU2kR3P+ctWZsO+J

Authentication-Results: hotmail.com; sender-id=temperror (sender IP is 22.22.22.251) [email protected]; dkim=none header.d=domain.com; x-hmca=none

X-Message-Status: n:0:n

X-SID-PRA: domain <[email protected]>

X-DKIM-Result: None

X-AUTH-Result: NONE

X-Message-Delivery: Vj0xLjE7dXM9MDtsPTA7YT0wO0Q9MjtHRD0yO1NDTD00

X-Message-Info: 11chDOWqoTmuG9CG0XY0IRV1CdM+txrPZ3g4GsamUFCB95rGJpCCPxpT0Q2/qFShc7jc4WWqIkVSUxI4KwKZ1I06sdBkLXZ7Dw+CfWUcDacnKa17Q0trM45k9HAJeJ+KBMZj/aRZb2A=

Received: from vps1.domain.nl ([22.22.22.251]) by COL0-MC2-F25.Col0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4900);

	 Sat, 26 Nov 2011 07:27:11 -0800

Received: from janton by vps1.domain.nl with local (Exim 4.72)

	(envelope-from <[email protected]>)

	id 1RUK9m-0000Rp-SE

	for [email protected]; Sat, 26 Nov 2011 16:27:10 +0100

Date: Sat, 26 Nov 2011 16:27:10 +0100

Message-Id: <[email protected]>

To: [email protected]

Subject: domain Account details voor newusernamestam op domain.com

MIME-Version: 1.0

Content-Type: text/plain; charset=UTF-8; format=flowed; delsp=yes

Content-Transfer-Encoding: 8Bit

X-Mailer: Pressflow

Errors-To: [email protected]

From: domain <[email protected]>

Return-Path: [email protected]

X-OriginalArrivalTime: 26 Nov 2011 15:27:11.0520 (UTC) FILETIME=[DE14CA00:01CCAC4F]
 
Excuse me, but why dont you use smtp? I suppose drupal is able to use SMTP Server for outgoing emails, am i wrong?

Regards
 
SeLLeRoNe said:
Excuse me, but why dont you use smtp? I suppose drupal is able to use SMTP Server for outgoing emails, am i wrong?

Regards
Click to expand...


Is it better to use SMTP then?

Good you ask.. because i was just wondering the same thing!
 
Absolutly yes, email get with authentication and you should(suggested) use also DKIM that will confirm the sender (so, should be easyer to dont get in spam).

Give it a try, also, i suggest you to use exim Spamblocker 4 (that will force you to use port 587 and auth for smtp for more security). and DKIM funciton (can be enable following the guide in this forum).

Regards
 
Ok thx for the fast respons.. some nice thing again to research this weekend!

also you say "can be enable following the guide in this forum" but i don't see any link?
 
Ok i tried to find information WHY SMTP is better then PHP mail()

But I can't find the information on the internet, maybe somebody could tell me why SMTP should be used instead of php mail(), it's my server so i can adjust things so php mail should work correct..

About DKIM i'm new and also try to find the proper information.
 
SMTP is no more better than PHP mail() in my opinion in the current case when using Directadmin. In both cases you should build valid headers for an email in case you are not using a ready-made PHP class for emailing, which would do for you most of work (e.g. PHPMailer 5.1 http://phpmailer.sourceforge.net/). A difference which exists is not big, and benefits are not obvious:

Return-Path
X-PHP-Script

And if your PTR record is wrong, or IP has not PTR record at all. If your SPF record is bad, then it mostly does not matter what you use PHP mail() or your own SMTP.
 
Sorry i have read this topic and posts some time ago, but did not know where to start.
Because i don't know what is wrong with my email header, perhaps somebody can point this out? What should i change?


Code: 
-store-info:4r51+eLowCe79NzwdU2kR3P+ctWZsO+J

Authentication-Results: hotmail.com; sender-id=temperror (sender IP is 22.22.22.251) [email protected]; dkim=none header.d=domain.com; x-hmca=none

X-Message-Status: n:0:n

X-SID-PRA: domain <[email protected]>

X-DKIM-Result: None

X-AUTH-Result: NONE

X-Message-Delivery: Vj0xLjE7dXM9MDtsPTA7YT0wO0Q9MjtHRD0yO1NDTD00

X-Message-Info: 11chDOWqoTmuG9CG0XY0IRV1CdM+txrPZ3g4GsamUFCB95rGJpCCPxpT0Q2/qFShc7jc4WWqIkVSUxI4KwKZ1I06sdBkLXZ7Dw+CfWUcDacnKa17Q0trM45k9HAJeJ+KBMZj/aRZb2A=

Received: from vps1.domain.nl ([22.22.22.251]) by COL0-MC2-F25.Col0.hotmail.com with Microsoft SMTPSVC(6.0.3790.4900);

	 Sat, 26 Nov 2011 07:27:11 -0800

Received: from janton by vps1.domain.nl with local (Exim 4.72)

	(envelope-from <[email protected]>)

	id 1RUK9m-0000Rp-SE

	for [email protected]; Sat, 26 Nov 2011 16:27:10 +0100

Date: Sat, 26 Nov 2011 16:27:10 +0100

Message-Id: <[email protected]>

To: [email protected]

Subject: domain Account details voor newusernamestam op domain.com

MIME-Version: 1.0

Content-Type: text/plain; charset=UTF-8; format=flowed; delsp=yes

Content-Transfer-Encoding: 8Bit

X-Mailer: Pressflow

Errors-To: [email protected]

From: domain <[email protected]>

Return-Path: [email protected]

X-OriginalArrivalTime: 26 Nov 2011 15:27:11.0520 (UTC) FILETIME=[DE14CA00:01CCAC4F]
 
Last edited:
You must log in or register to reply here.
Back
Top