1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Help with Email Server. PLEASE!!!

Discussion in 'BlackHat Lounge' started by JK2005, Jul 25, 2016.

  1. JK2005

    JK2005 Registered Member

    Joined:
    Oct 31, 2012
    Messages:
    62
    Likes Received:
    63
    Location:
    Somewhere in Asia
    I didn't know where to post this.

    Email Servers are not my thing, and Ive been searching for a week on how to fix this

    I have a new company that I'm building and I am setting up my mail server. All of my outgoing emails are hitting the SPAM Folder on the receivers email accounts.

    I am using digitalOcean droplet with Ubuntu 16.04 and ISPConfig 3.1

    My DNS is Hosted on Godaddy (I don't know how to set up DNS on my server) My spam report is telling me that everything is passing, yet all emails are going to spam. can any Email server Guru check out my report and give some direction?

    Thanks in advance.

    Code:
    ==========================================================
    Summary of Results
    ==========================================================
    
    SPF Check : pass
    Sender-ID Check : pass
    DomainKeys Check : neutral
    DKIM Check : pass
    SpamAssassin Check : ham (non-spam)
    ==========================================================
    Details:
    ==========================================================
    
    HELO hostname: [162.243.xxx.xxx]
    Source IP: 162.243.xxx.xxx
    mail-from: [email protected]*****er.com
    Anonymous To: [email protected]
    ---------------------------------------------------------
    SPF check details:
    ----------------------------------------------------------
    
    Result: pass
    ID(s) verified: [email protected]*****er.com
    DNS record(s):
    sc*****er.com.    3461    IN    TXT    "v=spf1 a mx ip4:162.243.xxx.xxx ~all"
    
    
    ----------------------------------------------------------
    Sender-ID check details:
    ----------------------------------------------------------
    
    Result: pass
    
    ID(s) verified: [email protected]*****er.com
    DNS record(s):
    sc*****er.com.    3461    IN    TXT    "v=spf1 a mx ip4:162.243.xxx.xxx ~all"
    
    
    ----------------------------------------------------------
    DomainKeys check details:
    ----------------------------------------------------------
    
    Result: neutral (message not signed)
    ID(s) verified: [email protected]*****er.com
    Selector=
    domain=
    DomainKeys DNS Record=
    
    ----------------------------------------------------------
    DKIM check details:
    ----------------------------------------------------------
    
    Result: pass
    ID(s) verified: [email protected]*****er.com
    Selector=default
    domain=
    sc*****er.com
    DomainKeys DNS Record=default._domainkey.
    sc*****er.com
    
    ----------------------------------------------------------
    SpamAssassin check details:
    ----------------------------------------------------------
    SpamAssassin 3.4.1 (2015-04-28)
    
    Result: ham (non-spam) (04.4points, 10.0 required)
    
    pts rule name description
    ---- ---------------------- -------------------------------
    
    
    * 3.5 BAYES_99 BODY: Bayes spam probability is 99 to 100%
    * [score: 1.0000]
    * -0.0 SPF_PASS SPF: sender matches SPF record
    * 0.2 BAYES_999 BODY: Bayes spam probability is 99.9 to 100%
    * [score: 1.0000]
    * -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's
    * domain
    * -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
    * 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily
    * valid
    * 0.8 RDNS_NONE Delivered to internal network by a host with no rDNS
    X-Spam-Status: Yes, hits=4.4 required=-20.0 tests=BAYES_99,BAYES_999,
    DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,RDNS_NONE,SPF_PASS autolearn=no
    autolearn_force=no version=3.4.1
    X-Spam-Score: 4.4
    
    To learn more about the terms used in the SpamAssassin report, please search
    here: http://wiki.apache.org/spamassassin/
    
    ==========================================================
    Explanation of the possible results (adapted from
    draft-kucherawy-sender-auth-header-04.txt):
    ==========================================================
    
    "pass"
    the message passed the authentication test.
    
    "fail"
    the message failed the authentication test.
    
    "softfail"
    the message failed the authentication test, and the authentication
    method has either an explicit or implicit policy which doesn't require
    successful authentication of all messages from that domain.
    
    "neutral"
    the authentication method completed without errors, but was unable
    to reach either a positive or a negative result about the message.
    
    "temperror"
    a temporary (recoverable) error occurred attempting to authenticate
    the sender; either the process couldn't be completed locally, or
    there was a temporary failure retrieving data required for the
    authentication. A later retry may produce a more final result.
    
    "permerror"
    a permanent (unrecoverable) error occurred attempting to
    authenticate the sender; either the process couldn't be completed
    locally, or there was a permanent failure retrieving data required
    for the authentication.
    
    
    ==========================================================
    Original Email
    ==========================================================
    
    From [email protected]*****er.com Mon Jul 25 10:04:30 2016
    Return-path: <[email protected]*****er.com>
    X-Spam-Checker-Version: SpamAssassin 3.4.1 (2015-04-28) on
    s15387396.onlinehome-server.com
    X-Spam-Flag: YES
    X-Spam-Level: ****
    X-Spam-Report:
    * 3.5 BAYES_99 BODY: Bayes spam probability is 99 to 100%
    * [score: 1.0000]
    * -0.0 SPF_PASS SPF: sender matches SPF record
    * 0.2 BAYES_999 BODY: Bayes spam probability is 99.9 to 100%
    * [score: 1.0000]
    * -0.1 DKIM_VALID_AU Message has a valid DKIM or DK signature from author's
    * domain
    * -0.1 DKIM_VALID Message has at least one valid DKIM or DK signature
    * 0.1 DKIM_SIGNED Message has a DKIM or DK signature, not necessarily
    * valid
    * 0.8 RDNS_NONE Delivered to internal network by a host with no rDNS
    X-Spam-Status: Yes, hits=4.4 required=-20.0 tests=BAYES_99,BAYES_999,
    DKIM_SIGNED,DKIM_VALID,DKIM_VALID_AU,RDNS_NONE,SPF_PASS autolearn=no
    autolearn_force=no version=3.4.1
    Envelope-to: [email protected]
    Delivery-date: Mon, 25 Jul 2016 10:04:30 -0500
    Received: from [162.243.xxx.xxx] (helo=myservershostname.com)
    by s15387396.onlinehome-server.com with esmtp (Exim 4.80.1)
    (envelope-from <[email protected]*****er.com>)
    id 1bRhQk-0003gB-42
    for [email protected]; Mon, 25 Jul 2016 10:04:30 -0500
    Received: from localhost (localhost [127.0.0.1])
    by myservershostname.com (Postfix) with ESMTP id 9AC8362254
    for <[email protected]>; Mon, 25 Jul 2016 11:04:29 -0400 (EDT)
    DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/simple; d=
    sc*****er.com; h=user-agent:message-id:from:from:date:date
    :content-transfer-encoding:content-type:content-type
    :mime-version:subject:subject; s=default; t=1469459069; x=
    1471273470; bh=4gT05kddvSgotSU8mrA/wFYCjXDMRfUfj3HmCJ6uqWM=; b=H
    dEfyPCKZ5Mgw5FL/xzEdNfqEtSvlAaAN7vDxjYqCr8hsfoJYxNi6JhtIEmyIBfae
    NA3fZTzYY+PJFSP34ZcfqiMfc+lfWltfFk4Iqk1SD8nOoDVamKFXdTZclv8grqk2
    qZ1GcbIDxee5VpuGJeiRT/S9jMvedYInwXIWxmB8Y0=
    X-Virus-Scanned: Debian amavisd-new at myserverhostname.com
    Received: from myservershostname.com ([127.0.0.1])
    by localhost (server.myservershostname.com [127.0.0.1]) (amavisd-new, port 10024)
    with ESMTP id abhVK6BRy38O for <[email protected]>;
    Mon, 25 Jul 2016 11:04:29 -0400 (EDT)
    Received: by myservershostname.com (Postfix, from userid 33)
    id 15F5162255; Mon, 25 Jul 2016 11:04:29 -0400 (EDT)
    To: [email protected]
    Subject: Welcome to ______________
    X-PHP-Originating-Script: 0:rcube.php
    MIME-Version: 1.0
    Content-Type: text/plain; charset=US-ASCII;
    format=flowed
    Content-Transfer-Encoding: 7bit
    Date: Mon, 25 Jul 2016 22:04:29 +0700
    From: XXXXXXXXXXXX <[email protected]*****er.com>
    Message-ID: <[email protected]*****er.com>
    X-Sender: [email protected]*****er.com
    User-Agent: Roundcube Webmail/1.2-beta
    X-DKIM-Status: pass (sc*****er.com)
    Thank you for signing up for our Newsletter 
    
    More Test Text going here
    
    If you would like to unsubscribe please visit us
    
    
    Kind Regards,
    
     Sales

    and my DNS Record i setup with godaddy:

    Code:
    ; SOA Record
    sc*****er.com.    600    IN    SOA    ns37.domaincontrol.com.    dns.jomax.net (
                    2016072517
                    28800
                    7200
                    604800
                    600
                    )
    
    ; A Records
    *    3600    IN    A    162.243.xxx.xxx
    mail    3600    IN    A    162.243.xxx.xxx
    @    600    IN    A    162.243.xxx.xxx
    
    ; CNAME Records
    ftp    3600    IN    CNAME    @
    www    3600    IN    CNAME    @
    
    ; MX Records
    @    1800    IN    MX    10    mail.sc*****er.com
    
    ; TXT Records
    default._domainkey    3600    IN    TXT    "v=DKIM1; t=s; p=MIGfMA0GCSlots more just deleted some"
    @    3600    IN    TXT    "v=spf1 a mx ip4:162.243.xxx.xxx ~all"
    
    ; NS Records
    @    3600    IN    NS    ns37.domaincontrol.com
    @    3600    IN    NS    ns38.domaincontrol.com
     
  2. Spysocks

    Spysocks Junior Member

    Joined:
    May 5, 2016
    Messages:
    121
    Likes Received:
    15
    Occupation:
    Socks service
    Home Page:
    If u don't have enought expirience of administration servers i recomend u write ns of big mail service like gmail or etc, they provide add your domain and use corporate mail.
    When u use mail server on your hosting it will be many trouble with him, google will be mark as spam 90%.
     
  3. luccha

    luccha Regular Member

    Joined:
    Apr 18, 2009
    Messages:
    345
    Likes Received:
    95
    Occupation:
    Cron
    Location:
    On Earth
    send a mail to mail-tester.com and see how it goes.
     
  4. JK2005

    JK2005 Registered Member

    Joined:
    Oct 31, 2012
    Messages:
    62
    Likes Received:
    63
    Location:
    Somewhere in Asia
    I'm trying to gain experience and learn at the same time. If I can learn, and getting working for myself. I will sure be happy.

    Last resort I will be managing through mail services
     
  5. JK2005

    JK2005 Registered Member

    Joined:
    Oct 31, 2012
    Messages:
    62
    Likes Received:
    63
    Location:
    Somewhere in Asia
    I've been using mail-tester, I neglected to copy one of the results to share, so I'll have to wait until tomorrow as I hit their 3 scan daily max.

    I was however getting a 5.8 rating
     
  6. Spysocks

    Spysocks Junior Member

    Joined:
    May 5, 2016
    Messages:
    121
    Likes Received:
    15
    Occupation:
    Socks service
    Home Page:
    mail-tester.com works same the spam assasin technology, i can set zero score spam assasin but mail will be marked as spam.
    If u want inbox - send mail from gmail or etc via web to server where u have spam marked, then open code of the letter and save them.
    Them send mail via your mail server, open code of the mail too and compare that.
    It will can help for solution of your problem.
     
  7. JK2005

    JK2005 Registered Member

    Joined:
    Oct 31, 2012
    Messages:
    62
    Likes Received:
    63
    Location:
    Somewhere in Asia
    Ok I'll try this. Thank you