Cannot disable every bounce email

Use this forum if you have installed hMailServer and want to ask a question related to a production release of hMailServer. Before posting, please read the troubleshooting guide. A large part of all reported issues are already described in detail here.
Post Reply
paulpeeters
New user
New user
Posts: 3
Joined: 2020-04-02 14:11

Cannot disable every bounce email

Post by paulpeeters » 2020-04-02 14:37

Hello

The IP address of our mail server got listed in the BACKSCATTERER list (http://www.backscatterer.org/index.php). As a result a few domain mail servers that use this blacklist, refuse to accept emails coming from our domain mail server.

One gets added to this BACKSCATTERER list when their system detects that emails are being bounced (no matter the reason of the bounce). I don't know exactly how they are able to detect bouncing emails and up until now I was not able to contact that organisation to get a clarification, which would be required to analyse and solve the issue.

I think that I have disabled every possible bounce in hMailServer but from the logs I think there is at least one case that apparently slips through and which I cannot disable. This hMailServer is mainly setup with a lot of aliases and distributions lists that forward email to external email addresses. From time to time, a forwarded email to a gmail.com recipient is refused and the log shows the below :

Messages missing a valid address in From:[nl]550 5.7.1 header, or having no From: header, are not accepted

A few lines further in the log file, I can see that a bounce email message is being sent back and although the error says there is no valid address or no From header, it apparently knows where to send this bounce mail to.

I have the latest version of hMailServer.

Anyone any idea how to disable that (and possible other) mail bounce ?

Thanks
Paul Peeters

User avatar
SorenR
Senior user
Senior user
Posts: 3624
Joined: 2006-08-21 15:38
Location: Denmark

Re: Cannot disable every bounce email

Post by SorenR » 2020-04-02 15:13

paulpeeters wrote:
2020-04-02 14:37
Hello

The IP address of our mail server got listed in the BACKSCATTERER list (http://www.backscatterer.org/index.php). As a result a few domain mail servers that use this blacklist, refuse to accept emails coming from our domain mail server.

One gets added to this BACKSCATTERER list when their system detects that emails are being bounced (no matter the reason of the bounce). I don't know exactly how they are able to detect bouncing emails and up until now I was not able to contact that organisation to get a clarification, which would be required to analyse and solve the issue.

I think that I have disabled every possible bounce in hMailServer but from the logs I think there is at least one case that apparently slips through and which I cannot disable. This hMailServer is mainly setup with a lot of aliases and distributions lists that forward email to external email addresses. From time to time, a forwarded email to a gmail.com recipient is refused and the log shows the below :

Messages missing a valid address in From:[nl]550 5.7.1 header, or having no From: header, are not accepted

A few lines further in the log file, I can see that a bounce email message is being sent back and although the error says there is no valid address or no From header, it apparently knows where to send this bounce mail to.

I have the latest version of hMailServer.

Anyone any idea how to disable that (and possible other) mail bounce ?

Thanks
Paul Peeters
A proper SPF and DKIM setup will prevent anyone from using your domain in sending SPAM, even if your server is NOT involved.

Backscatter is when someone is sending SPAM that appear from your domain but uses a hacked server somewhere to send to a non-existing recipient. The server with the non-existing recipient will send a NDR (non-delivery report) back to what appears to be the originating server - Except it's not but it is drowning in NDR's for a domain not on the server - that's how you end up on this list.
SørenR.

“Those who don't know history are doomed to repeat it.”
― Edmund Burke

palinka
Senior user
Senior user
Posts: 1968
Joined: 2017-09-12 17:57

Re: Cannot disable every bounce email

Post by palinka » 2020-04-02 18:38

SorenR wrote:
2020-04-02 15:13
A proper SPF and DKIM setup will prevent anyone from using your domain in sending SPAM, ONLY if your server is NOT involved.
A comprimised account password can also result in spam coming from your domain. Just sayin'.... :D

paulpeeters
New user
New user
Posts: 3
Joined: 2020-04-02 14:11

Re: Cannot disable every bounce email

Post by paulpeeters » 2020-04-02 18:57

I had already setup SPF, DKIM and DMARC, the latter only with policy 'none' which I have now changed to policy 'reject'.

But what I would really like to know is how to make sure my hMailServer does not send NDR reports (bounce mails) at all

User avatar
SorenR
Senior user
Senior user
Posts: 3624
Joined: 2006-08-21 15:38
Location: Denmark

Re: Cannot disable every bounce email

Post by SorenR » 2020-04-02 19:23

paulpeeters wrote:
2020-04-02 18:57
I had already setup SPF, DKIM and DMARC, the latter only with policy 'none' which I have now changed to policy 'reject'.

But what I would really like to know is how to make sure my hMailServer does not send NDR reports (bounce mails) at all
Create a catch-all account.
SørenR.

“Those who don't know history are doomed to repeat it.”
― Edmund Burke

paulpeeters
New user
New user
Posts: 3
Joined: 2020-04-02 14:11

Re: Cannot disable every bounce email

Post by paulpeeters » 2020-04-02 19:32

I had a catch-all account but I disabled it because I thought that could have caused the NDR bounces

User avatar
SorenR
Senior user
Senior user
Posts: 3624
Joined: 2006-08-21 15:38
Location: Denmark

Re: Cannot disable every bounce email

Post by SorenR » 2020-04-02 20:29

paulpeeters wrote:
2020-04-02 19:32
I had a catch-all account but I disabled it because I thought that could have caused the NDR bounces
A Catch-all account is like a black hole, nothing escapes it :mrgreen:
SørenR.

“Those who don't know history are doomed to repeat it.”
― Edmund Burke

User avatar
mattg
Moderator
Moderator
Posts: 20899
Joined: 2007-06-14 05:12
Location: 'The Outback' Australia

Re: Cannot disable every bounce email

Post by mattg » 2020-04-02 23:08

I use a rule to catch them
(I don't like catch all accounts)



From contains 'mailer-daemon' or from contains 'mail.example.com' where mail.example.com is the MX record name
Just 'cause I link to a page and say little else doesn't mean I am not being nice.
https://www.hmailserver.com/documentation

Post Reply