<div dir="ltr"><div dir="ltr"><div>Rick, thanks for explaining what was happening and apologies to all who were affected by the way I had things set up for my <a href="http://ewind.com">ewind.com</a> domain. A little bit of backstory. I had to quickly set up workarounds when I lost several servers due to hardware failures and had to rebuild on existing cloud based systems (anybody else using Nephohosting or have heard good or bad about them?) and where gaps in coverage appeared, tried to cover them with forwarding.</div><div><br></div><div>That being said, I'd like to keep my BALUG mailing lists presence based on my <a href="mailto:hoover.chan@gmail.com">hoover.chan@gmail.com</a> address.</div><div><br></div><div>Also, any pointers to documentation on current best practices for building network services (e-mail, Web, DNS)? Especially on cloud hosted platforms? (e.g. Nephosting (or equivalent), AWS, etc). Most of the "How Tos" that I've learned from in the past are now outdated.</div><div><br></div><div>Speaking of which, I also had to rebuild my collection of GNU Mailman mailing lists on cloud hosted services since my hardware disasters also swept those away. I'm guessing that the SPF/DMARC issues may be affecting these too. Partly due to pricing and what reviews I was able to find at the time, I ended up going to "Mailmanlists.net". Is the BALUG universe also on a 3rd party hosted service which everyone is happy with? I'd be curious to learn more.</div><div><br></div><div>Thanks all for your patience.</div><div><br></div><div>- Hoover Chan (<a href="mailto:hoover.chan@gmail.com">hoover.chan@gmail.com</a>)<br></div></div><br><div class="gmail_quote"><div dir="ltr" class="gmail_attr">On Sat, Jul 30, 2022 at 2:58 PM Rick Moen <<a href="mailto:rick@linuxmafia.com">rick@linuxmafia.com</a>> wrote:<br></div><blockquote class="gmail_quote" style="margin:0px 0px 0px 0.8ex;border-left:1px solid rgb(204,204,204);padding-left:1ex">It took me a moment to figure this out, because I was in a security talk<br>
at SCaLE 19x and was distracted.<br>
<br>
Hoover Chan did something that many people think is a good idea, but is<br>
not:  Hoover subscribed "<a href="mailto:hchan@mail.ewind.com" target="_blank">hchan@mail.ewind.com</a>" but set that mailbox to<br>
forward to his GMail mailbox, <a href="mailto:hoover.chan@gmail.com" target="_blank">hoover.chan@gmail.com</a> .  <br>
<br>
Hoover, sorry, in 2022 you can no longer do mail forwarding with wild<br>
abandon, because of increasing deployment of anti-forgery blocking<br>
technologies (SPF and DMARC).<br>
<br>
In this case, my posting to balug-admin was processed by <a href="http://list.balug.org" rel="noreferrer" target="_blank">list.balug.org</a><br>
and re-mailed to all subscribers including your <a href="mailto:hchan@mail.ewind.com" target="_blank">hchan@mail.ewind.com</a> .<br>
Host <a href="http://nephoscale.ewind.com" rel="noreferrer" target="_blank">nephoscale.ewind.com</a> (IP 198.89.112.140) tried re-lobbing your<br>
subscriber copy to GMail, which rejected it because IP 198.89.112.140 <br>
is not a permitted originator for mail from domain <a href="http://balug.org" rel="noreferrer" target="_blank">balug.org</a>, i.e., <br>
that IP as an SMTP source violates <a href="http://balug.org" rel="noreferrer" target="_blank">balug.org</a>'s SPF and DMARC<br>
declarations.<br>
<br>
I am deleting your subscriptions of <a href="mailto:hchan@mail.ewind.com" target="_blank">hchan@mail.ewind.com</a> from<br>
balug-admin and from any other BALUG mailing list it might be on.<br>
(I haven't yet checked the other three.)  I will also have Mailman<br>
send an "invitation" to quick-subscribe Hoover Chan <<a href="mailto:hoover.chan@gmail.com" target="_blank">hoover.chan@gmail.com</a>> ,<br>
if you so wish.<br>
<br>
Please review your subscriptions to any _other_ mailing lists, and stop<br>
relying on <a href="mailto:hchan@mail.ewind.com" target="_blank">hchan@mail.ewind.com</a> -> <a href="mailto:hoover.chan@gmail.com" target="_blank">hoover.chan@gmail.com</a> forwarding.<br>
You really cannot rely on that, any more.  TY.<br>
<br>
-- Rick Moen<br>
   for the BALUG sysadmin team<br>
<br>
<br>
----- Forwarded message from <a href="mailto:mailman@lists.balug.org" target="_blank">mailman@lists.balug.org</a> -----<br>
<br>
Date: Sat, 30 Jul 2022 20:35:00 +0000<br>
From: <a href="mailto:mailman@lists.balug.org" target="_blank">mailman@lists.balug.org</a><br>
To: <a href="mailto:balug-admin-owner@lists.balug.org" target="_blank">balug-admin-owner@lists.balug.org</a><br>
Subject: Bounce action notification<br>
X-Spam-Status: No, score=-2.6 required=4.0 tests=BAYES_00,MAILING_LIST_MULTI,<br>
        NO_REAL_NAME,SPF_PASS,T_TVD_MIME_NO_HEADERS autolearn=ham version=3.3.1<br>
<br>
This is a Mailman mailing list bounce action notice:<br>
<br>
    List:       BALUG-Admin<br>
    Member:     <a href="mailto:hchan@mail.ewind.com" target="_blank">hchan@mail.ewind.com</a><br>
    Action:     Subscription disabled.<br>
    Reason:     Excessive or fatal bounces.<br>
<br>
<br>
<br>
The triggering bounce notice is attached below.<br>
<br>
Questions? Contact the Mailman site administrator at<br>
<a href="mailto:mailman@lists.balug.org" target="_blank">mailman@lists.balug.org</a>.<br>
<br>
Received: from <a href="http://static-198.89.112.140.nephohosting.com" rel="noreferrer" target="_blank">static-198.89.112.140.nephohosting.com</a> ([198.89.112.140] helo=<a href="http://nephoscale.ewind.com" rel="noreferrer" target="_blank">nephoscale.ewind.com</a>)<br>
        by <a href="http://balug-sf-lug-v2.balug.org" rel="noreferrer" target="_blank">balug-sf-lug-v2.balug.org</a> with esmtps (TLS1.2:ECDHE_RSA_AES_256_GCM_SHA384:256)<br>
        (Exim 4.92)<br>
        id 1oHtAp-00053A-No<br>
        for <a href="mailto:balug-admin-bounces@lists.balug.org" target="_blank">balug-admin-bounces@lists.balug.org</a>; Sat, 30 Jul 2022 20:34:59 +0000<br>
Received: from localhost (localhost)<br>
        by <a href="http://nephoscale.ewind.com" rel="noreferrer" target="_blank">nephoscale.ewind.com</a> (8.14.4/8.14.4) id 26UKUlVD005544;<br>
        Sat, 30 Jul 2022 13:30:47 -0700<br>
Date: Sat, 30 Jul 2022 13:30:47 -0700<br>
From: Mail Delivery Subsystem <<a href="mailto:MAILER-DAEMON@nephoscale.ewind.com" target="_blank">MAILER-DAEMON@nephoscale.ewind.com</a>><br>
Message-Id: <<a href="mailto:202207302030.26UKUlVD005544@nephoscale.ewind.com" target="_blank">202207302030.26UKUlVD005544@nephoscale.ewind.com</a>><br>
To: <<a href="mailto:balug-admin-bounces@lists.balug.org" target="_blank">balug-admin-bounces@lists.balug.org</a>><br>
MIME-Version: 1.0<br>
Content-Type: multipart/report; report-type=delivery-status;<br>
        boundary="26UKUlVD005544.1659213047/<a href="http://nephoscale.ewind.com" rel="noreferrer" target="_blank">nephoscale.ewind.com</a>"<br>
Subject: Returned mail: see transcript for details<br>
Auto-Submitted: auto-generated (failure)<br>
Received-SPF: none client-ip=198.89.112.140; helo=<a href="http://nephoscale.ewind.com" rel="noreferrer" target="_blank">nephoscale.ewind.com</a><br>
<br>
The original message was received at Sat, 30 Jul 2022 13:30:41 -0700<br>
from <a href="http://balug.org" rel="noreferrer" target="_blank">balug.org</a> [96.86.170.229]<br>
<br>
   ----- The following addresses had permanent fatal errors -----<br>
<a href="mailto:hoover.chan@gmail.com" target="_blank">hoover.chan@gmail.com</a><br>
    (reason: 550-5.7.26 This message does not pass authentication checks (SPF and DKIM both)<br>
    (expanded from: <<a href="mailto:hchan@mail.ewind.com" target="_blank">hchan@mail.ewind.com</a>>)<br>
<br>
   ----- Transcript of session follows -----<br>
... while talking to <a href="http://gmail-smtp-in.l.google.com" rel="noreferrer" target="_blank">gmail-smtp-in.l.google.com</a>.:<br>
>>> DATA<br>
<<< 550-5.7.26 This message does not pass authentication checks (SPF and DKIM both<br>
<<< 550-5.7.26 do not pass). SPF check for [<a href="http://lists.balug.org" rel="noreferrer" target="_blank">lists.balug.org</a>] does not pass with ip:<br>
<<< 550-5.7.26 [198.89.112.140].To best protect our users from spam, the message<br>
<<< 550-5.7.26 has been blocked. Please visit<br>
<<< 550-5.7.26  <a href="https://support.google.com/mail/answer/81126#authentication" rel="noreferrer" target="_blank">https://support.google.com/mail/answer/81126#authentication</a> for more<br>
<<< 550 5.7.26 information. f5-20020a62db05000000b0052c708707dbsi7062217pfg.121 - gsmtp<br>
554 5.0.0 Service unavailable<br>
<br>
Reporting-MTA: dns; <a href="http://nephoscale.ewind.com" rel="noreferrer" target="_blank">nephoscale.ewind.com</a><br>
Received-From-MTA: DNS; <a href="http://balug.org" rel="noreferrer" target="_blank">balug.org</a><br>
Arrival-Date: Sat, 30 Jul 2022 13:30:41 -0700<br>
<br>
Final-Recipient: RFC822; <a href="mailto:hchan@mail.ewind.com" target="_blank">hchan@mail.ewind.com</a><br>
X-Actual-Recipient: RFC822; <a href="mailto:hoover.chan@gmail.com" target="_blank">hoover.chan@gmail.com</a><br>
Action: failed<br>
Status: 5.7.26<br>
Remote-MTA: DNS; <a href="http://gmail-smtp-in.l.google.com" rel="noreferrer" target="_blank">gmail-smtp-in.l.google.com</a><br>
Diagnostic-Code: SMTP; 550-5.7.26 This message does not pass authentication checks (SPF and DKIM both<br>
Last-Attempt-Date: Sat, 30 Jul 2022 13:30:42 -0700<br>
<br>
Return-Path: <<a href="mailto:balug-admin-bounces@lists.balug.org" target="_blank">balug-admin-bounces@lists.balug.org</a>><br>
Received: from <a href="http://balug-sf-lug-v2.balug.org" rel="noreferrer" target="_blank">balug-sf-lug-v2.balug.org</a> (<a href="http://balug.org" rel="noreferrer" target="_blank">balug.org</a> [96.86.170.229])<br>
        by <a href="http://nephoscale.ewind.com" rel="noreferrer" target="_blank">nephoscale.ewind.com</a> (8.14.4/8.14.4) with ESMTP id 26UKUfVD005543<br>
        for <<a href="mailto:hchan@mail.ewind.com" target="_blank">hchan@mail.ewind.com</a>>; Sat, 30 Jul 2022 13:30:41 -0700<br>
Received: from localhost ([127.0.0.1] helo=<a href="http://balug.org" rel="noreferrer" target="_blank">balug.org</a>)<br>
        by <a href="http://balug-sf-lug-v2.balug.org" rel="noreferrer" target="_blank">balug-sf-lug-v2.balug.org</a> with esmtp (Exim 4.92)<br>
        (envelope-from <<a href="mailto:balug-admin-bounces@lists.balug.org" target="_blank">balug-admin-bounces@lists.balug.org</a>>)<br>
        id 1oHtAc-00052G-8o; Sat, 30 Jul 2022 20:34:46 +0000<br>
Received: from <a href="http://linuxmafia.com" rel="noreferrer" target="_blank">linuxmafia.com</a> ([96.95.217.99])<br>
 by <a href="http://balug-sf-lug-v2.balug.org" rel="noreferrer" target="_blank">balug-sf-lug-v2.balug.org</a> with esmtps (TLS1.0:RSA_AES_256_CBC_SHA1:256)<br>
 (Exim 4.92) (envelope-from <<a href="mailto:rick@linuxmafia.com" target="_blank">rick@linuxmafia.com</a>>) id 1oHtAZ-000526-W5<br>
 for <a href="mailto:balug-admin@lists.balug.org" target="_blank">balug-admin@lists.balug.org</a>; Sat, 30 Jul 2022 20:34:44 +0000<br>
Received: from rick by <a href="http://linuxmafia.com" rel="noreferrer" target="_blank">linuxmafia.com</a> with local (Exim 4.72)<br>
 (envelope-from <<a href="mailto:rick@linuxmafia.com" target="_blank">rick@linuxmafia.com</a>>) id 1oHtAX-0001P2-QB<br>
 for <a href="mailto:balug-admin@lists.balug.org" target="_blank">balug-admin@lists.balug.org</a>; Sat, 30 Jul 2022 13:34:41 -0700<br>
Date: Sat, 30 Jul 2022 13:34:41 -0700<br>
From: Rick Moen <<a href="mailto:rick@linuxmafia.com" target="_blank">rick@linuxmafia.com</a>><br>
To: <a href="mailto:balug-admin@lists.balug.org" target="_blank">balug-admin@lists.balug.org</a><br>
Message-ID: <<a href="mailto:20220730203441.GI13985@linuxmafia.com" target="_blank">20220730203441.GI13985@linuxmafia.com</a>><br>
References: <<a href="mailto:20220726022507.GV13985@linuxmafia.com" target="_blank">20220726022507.GV13985@linuxmafia.com</a>><br>
MIME-Version: 1.0<br>
Content-Disposition: inline<br>
In-Reply-To: <<a href="mailto:20220726022507.GV13985@linuxmafia.com" target="_blank">20220726022507.GV13985@linuxmafia.com</a>><br>
Organization: If you lived here, you'd be $HOME already.<br>
X-Mas: Bah humbug.<br>
X-Clacks-Overhead: GNU Terry Pratchett<br>
User-Agent: Mutt/1.5.20 (2009-06-14)<br>
X-SA-Exim-Connect-IP: <locally generated><br>
X-SA-Exim-Mail-From: <a href="mailto:rick@linuxmafia.com" target="_blank">rick@linuxmafia.com</a><br>
X-SA-Exim-Scanned: No (on <a href="http://linuxmafia.com" rel="noreferrer" target="_blank">linuxmafia.com</a>); SAEximRunCond expanded to false<br>
Received-SPF: pass client-ip=96.95.217.99; envelope-from=<a href="mailto:rick@linuxmafia.com" target="_blank">rick@linuxmafia.com</a>;<br>
 helo=<a href="http://linuxmafia.com" rel="noreferrer" target="_blank">linuxmafia.com</a><br>
Subject: Re: [BALUG-Admin] Spamtraps and<br>
 <a href="http://www.uceprotect.net/en/rblcheck.php?ipr=96.86.170.229" rel="noreferrer" target="_blank">http://www.uceprotect.net/en/rblcheck.php?ipr=96.86.170.229</a><br>
X-BeenThere: <a href="mailto:balug-admin@lists.balug.org" target="_blank">balug-admin@lists.balug.org</a><br>
X-Mailman-Version: 2.1.29<br>
Precedence: list<br>
List-Id: Discussion among those who make BALUG work<br>
 <<a href="http://balug-admin.lists.balug.org" rel="noreferrer" target="_blank">balug-admin.lists.balug.org</a>><br>
List-Unsubscribe: <<a href="https://lists.balug.org/cgi-bin/mailman/options/balug-admin" rel="noreferrer" target="_blank">https://lists.balug.org/cgi-bin/mailman/options/balug-admin</a>>, <br>
 <mailto:<a href="mailto:balug-admin-request@lists.balug.org" target="_blank">balug-admin-request@lists.balug.org</a>?subject=unsubscribe><br>
List-Archive: <<a href="https://lists.balug.org/pipermail/balug-admin/" rel="noreferrer" target="_blank">https://lists.balug.org/pipermail/balug-admin/</a>><br>
List-Post: <mailto:<a href="mailto:balug-admin@lists.balug.org" target="_blank">balug-admin@lists.balug.org</a>><br>
List-Help: <mailto:<a href="mailto:balug-admin-request@lists.balug.org" target="_blank">balug-admin-request@lists.balug.org</a>?subject=help><br>
List-Subscribe: <<a href="https://lists.balug.org/cgi-bin/mailman/listinfo/balug-admin" rel="noreferrer" target="_blank">https://lists.balug.org/cgi-bin/mailman/listinfo/balug-admin</a>>, <br>
 <mailto:<a href="mailto:balug-admin-request@lists.balug.org" target="_blank">balug-admin-request@lists.balug.org</a>?subject=subscribe><br>
Content-Type: text/plain; charset="us-ascii"<br>
Content-Transfer-Encoding: 7bit<br>
Errors-To: <a href="mailto:balug-admin-bounces@lists.balug.org" target="_blank">balug-admin-bounces@lists.balug.org</a><br>
Sender: "BALUG-Admin" <<a href="mailto:balug-admin-bounces@lists.balug.org" target="_blank">balug-admin-bounces@lists.balug.org</a>><br>
<br>
<br>
<br>
----- End forwarded message -----<br>
</blockquote></div></div><div id="DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2"><br><table style="border-top:1px solid #d3d4de"><tr><td style="width:55px;padding-top:13px"><a href="http://www.avg.com/email-signature?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail" target="_blank"><img src="https://s-install.avcdn.net/ipm/preview/icons/icon-envelope-tick-green-avg-v1.png" alt=" width=" height="29" style="width: 46px; height: 29px;"></a></td><td style="width:470px;padding-top:12px;color:#41424e;font-size:13px;font-family:Arial,Helvetica,sans-serif;line-height:18px">Virus-free.<a href="http://www.avg.com/email-signature?utm_medium=email&utm_source=link&utm_campaign=sig-email&utm_content=webmail" target="_blank" style="color:#4453ea">www.avg.com</a></td></tr></table><a href="#DAB4FAD8-2DD7-40BB-A1B8-4E2AA1F9FDF2" width="1" height="1"></a></div>