DNS PTR Record with 2 FQDN Entries with SPAM Check

pattonb

@pattonb argh the ip IS NOT listed in their spf record, can't type today

scottalanmiller

@pattonb said in ptr + 2 fqdn:

@scottalanmiller I have read it. the question is/was, how do you deal with this situation when it occurs (rarely), is there a way other than whitelisting the offending ip for the ptr. and the ip is listed in their spf list.

No, there is no possible way to deal with it without bypassing the PTR check because the whole purpose of the PTR check is to see if the PTR is good and if not, mark as spam. And in this case, it's a bad PTR. Leaving whitelisting (or disabling PTR checks) as your only options since it is legitimately failing the check since the record is bad.

scottalanmiller

@pattonb said in ptr + 2 fqdn:

@pattonb argh the ip IS NOT listed in their spf record, can't type today

Are you confident that this isn't a spammer? LOL Even at the human level, they are failing one spam check after another. Pretty suspicious.

scottalanmiller

Edited the title for clarity (and SEO) and added topic tags.

pattonb

@scottalanmiller ok, thanks, I am sure it isn't a spammer, it is an email, for me, I was expecting. The sender 'city of calgary"
has their ptr record setup that way.

scottalanmiller

@pattonb said in DNS PTR Record with 2 FQDN Entries with SPAM Check:

@scottalanmiller ok, thanks, I am sure it isn't a spammer, it is an email, for me, I was expecting. The sender 'city of calgary"
has their ptr record setup that way.

Then they desperately need email help, that's going to cause issues for them across the board. You'll have to white list it.

JaredBusch

WTF does this have to do with receiving email?

JaredBusch

Normal offices have zero control over their PTR records. It is something that an ISP deals with.

pattonb

@JaredBusch true, and your point is ?

JaredBusch

@pattonb said in DNS PTR Record with 2 FQDN Entries with SPAM Check:

@pattonb argh the ip IS NOT listed in their spf record, can't type today

This should affect things.

Valid SPF is critical to helping reducing spam.

pattonb

@JaredBusch SPF has it flaws, however, in this case , ptr check yields 2 fqdn, and no listing in the SPF to confirm validity of sender.

JaredBusch

@pattonb said in DNS PTR Record with 2 FQDN Entries with SPAM Check:

@JaredBusch true, and your point is ?

That you could likely not receive email from my client because the PTR does not resolve to their domain name. Hence PTR is not a verification of for email.

Or my other client that proxies their outbound email through Google Mail Security (wtf ever they changed the name to).

JaredBusch

@pattonb said in DNS PTR Record with 2 FQDN Entries with SPAM Check:

@JaredBusch SPF has it flaws, however, in this case , ptr check yields 2 fqdn, and no listing in the SPF to confirm validity of sender.

PTR and SPF have nothing to do with each other.

pattonb

@JaredBusch correct, they are tools to determine validity of incoming email. If you have a mail server , ( I would think with a static ip), why you wouldn't have a ptr record that matches your mailserver, is asking for issues.

JaredBusch

@pattonb said in DNS PTR Record with 2 FQDN Entries with SPAM Check:

why you wouldn't have a ptr record that matches your mailserver, is asking for issues.

Two very simple reasons that I hae already stated.

Because PTR is not for email verification.
Because PTR records are not something I have access to update.

JaredBusch

Look at it more obviously, taking the entire stupid local email server out of the equation.

How the fuck am I supposed to know what IP Microsoft is using to send my email since I use O365? Let alone how am I supposed to get access to the IP scope to change the PTR.

Of and then also that would screw over every other O365 user that has their email sent out on the same IP address.

scottalanmiller

@pattonb said in DNS PTR Record with 2 FQDN Entries with SPAM Check:

@JaredBusch correct, they are tools to determine validity of incoming email. If you have a mail server , ( I would think with a static ip), why you wouldn't have a ptr record that matches your mailserver, is asking for issues.

No reason for a sending mail server to have a static IP, that's for receipt only. It's actually a sending client. The whole concept of email sending as a static IP'd server doesn't actually make sense. People do it because of bad spam filtering attempts, but it isn't actually logical. The sending action is more akin to a web browser and we don't expect a static IP or PTR record for each web browser out there. It's a transient action.

PTR records are controlled by the ISP and loads of ISPs won't modify them.

scottalanmiller

@JaredBusch said in DNS PTR Record with 2 FQDN Entries with SPAM Check:

Of and then also that would screw over every other O365 user that has their email sent out on the same IP address.

PTR lookups are just for the canonical name of the server (that it is filled in), not that it matches the email address. It's not supposed to match the email domain, if it does, it almost certainly is a bad record.

JaredBusch

@scottalanmiller said in DNS PTR Record with 2 FQDN Entries with SPAM Check:

@JaredBusch said in DNS PTR Record with 2 FQDN Entries with SPAM Check:

Of and then also that would screw over every other O365 user that has their email sent out on the same IP address.

PTR lookups are just for the canonical name of the server (that it is filled in), not that it matches the email address. It's not supposed to match the email domain, if it does, it almost certainly is a bad record.

But that is specifically what he is asking about. That the PTR matches the sending mail server

pattonb

@JaredBusch incorrect, Scott has summarized succinctly