Unauthenticated email from gmail.com is not accepted duo to domain’s\n550-5.7.26 DMARC policy

F

fk21

Verified User
Joined
Jun 11, 2023
Messages
36
Hi dear all.
Would you please help me eliminate the following issue?
I have set up email properly on the domain hitopex.com; I can send and receive emails, but When I want to send an email from WordPress, the email is rejected by google policies though everything in spf and dmarc records are set properly!
DMARC Error SENT BY Google.png

I appreciate your help in this respect.

Best regards,
Faramarz
 

Attachments

  • DMARC Error SENT BY Google.png
    DMARC Error SENT BY Google.png
    50.7 KB · Views: 6
I have sent an email to www.mail-tester.com and got the following output:

The famous spam filter SpamAssassin. Score: -0.6.
A score below -5 is considered spam.


-0.1DKIM_INVALIDDKIM or DK signature exists, but is not valid
-0.1DKIM_SIGNEDMessage has a DKIM or DK signature, not necessarily valid
This rule is automatically applied if your email contains a DKIM signature but other positive rules will also be added if your DKIM signature is valid. See immediately below.
-0.363RDNS_DYNAMICDelivered to internal network by host with dynamic-looking rDNS
-0.001SPF_HELO_NONESPF: HELO does not publish an SPF Record
0.001SPF_PASSSPF: sender matches SPF record
Great! Your SPF is valid
 
The problem is that no smtp is used from that wordpress so php mail is used, which makes use of the hostname which does not have SPF.

You can either use an SMTP plugin for Wordpress or maybe use a correct hostname and have SPF on there.

But maybe it will help to have a correct hostname to start with.
At this moment it's still server-5-75-206-72.da.direct but in the other thread, you said you would change it to server.hitopex.com which is better.

If you do that, then afterwards you can create (as mentioned) a seperate zone for your hostname which then also creates an SPF record which is needed anyway when mail is send via the hostname.

A good SMTP plugin for Wordpress is wp-mail-smtp but I recommend to change and update the hostname anyway.
 
What selector are you using for signing your emails with DKIM?

Is this customizable in DirectAdmin?

Does the public encryption key exist in your publicly accessible DNS for this selector?

dig %selector%._domainkey.%domain% TXT

Further from that... how is WordPress sending out these messages? What envelope-sender is being used when these messages are sent out?

Some of the information in the thread at

user cron, mail DKIM issues

Goodday! I've got an irritating issue at hand. I've got a user: user that has several domains configured under it's account. in the account he has several cronjobs that does some action and sends messages to users gmail address. Since a few weeks now the user hasn't been receiving these mail...
forum.directadmin.com forum.directadmin.com

might be useful
 
Hi everybody and thanks for your help.
I have already created the zone server.hitopex.com.
Zones.jpg
Server Zones.jpg
I also created the same zone and records on Hetzner DNS records. Should I do any thing else?

Dear Sparek, I have not yet defined any DKIM but I will do it now and let you know the results.
 
fk21 said:
I also created the same zone and records on Hetzner DNS records. Should I do any thing else?
Click to expand...
Something is off here.
Because now I see "Local data NO, Local mail NO" while "local mail" should be YES.

Please remove the zone.
Then first change your hostname in directadmin, because it now still has the da.direct hostname which you don't want.
After that, check the /etc/hosts file that you have the correct hostname in there too.
Then reboot the server.
If that is all done, then you create the zone again.

Creating DKIM for the hostname comes later, same als the ssl, but it first has to be in good order, which it is not right now.
 
You must log in or register to reply here.
Back
Top