Hi, We have an problem with our ISPConfig configuration. We have installed it yesterday, and used it for 30 of our clients. Now if someone sends to gmail or outlook (hotmail), it will land in gmail's or outlook's spam folder. We use rDNS and SPF records. We tested it from multiple ISPConfig servers, with the same configuration, so we know it is not the IP (149.210.141.28) Here's an sample email, what lands in the spam folder (we've deleted the domain and replaced it with ANYDOMAIN, to respect our client's privacy). Please note that this happends with each domain. Code: Delivered-To: [email protected] Received: by 10.182.86.162 with SMTP id q2csp163603obz; Thu, 25 Jul 2013 11:55:03 -0700 (PDT) X-Received: by 10.180.81.169 with SMTP id b9mr3082227wiy.40.1374778502527; Thu, 25 Jul 2013 11:55:02 -0700 (PDT) Return-Path: <michel@ANYDOMAIN> Received: from fallback01.refreshserver.nl (fallback01.refreshserver.nl. [149.210.141.28]) by mx.google.com with ESMTP id k5si19296829wje.85.2013.07.25.11.55.01 for <[email protected]>; Thu, 25 Jul 2013 11:55:02 -0700 (PDT) Received-SPF: pass (google.com: domain of michel@ANYDOMAIN designates 149.210.141.28 as permitted sender) client-ip=149.210.141.28; Authentication-Results: mx.google.com; spf=pass (google.com: domain of michel@ANYDOMAIN designates 149.210.141.28 as permitted sender) smtp.mail=michel@ANYDOMAIN Received: by fallback01.refreshserver.nl (Postfix, from userid 48) id ECDBA281B2E; Thu, 25 Jul 2013 20:53:15 +0200 (CEST) To: [email protected] Subject: Other email to check the spam. X-PHP-Originating-Script: 0:rcmail.php MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8; format=flowed Content-Transfer-Encoding: 7bit Date: Thu, 25 Jul 2013 20:53:15 +0200 From: michel@ANYDOMAIN Message-ID: <d92ee64f51d191478b05bc6b13e9dac2@ANYDOMAIN> X-Sender: michel@ANYDOMAIN User-Agent: Roundcube Webmail/0.9.2 Other email to check the spam. Please help if you can. Regards, Michel Bardelmeijer
Magic fairies came and fixed the problem. Looks like gmail flusht there spam check or something like that. With outlook it still isn't fixed, but i trust it will work soon. One question, in the headers with amavis enabled, this wil show up: Code: Received: from localhost (unknown [127.0.0.1]) by fallback01.refreshserver.nl (Postfix) with ESMTP id 61A27281B35 Is this ok, can this be ignored? Thanks!
The most common source of spam are vulnerable website scripts or contact forms. You can see in the mail headers if a script is send by php and which script has send it to check and fix the script. In the case above, the email was send by the script rcmail.php on your server: X-PHP-Originating-Script: 0:rcmail.php You can check here if your server / IP is blacklisted: http://mxtoolbox.com/blacklists.aspx Thats a normal delivery header of a email scanned by amavis.
Thanks for you're reply. The IP used for this is not on a blacklist. See http://mxtoolbox.com/SuperTool.aspx?action=blacklist:149.210.141.28&run=toolpage rcmail.php is the script from roundcube. On the server does not run any other scripts like websites, it's an mail-only server. We have the same problem on an other IP with the same configuration.
There are several reasons why a email gets sorted out as spam by provieders, its not a issue with the setup in general, these are all individual server / ip / dns based problems: 1) Using a dynamic IP address to send the emails. 2) Your IP or subnet has a bed reputation,e.g. other servers in the same subnet has been send spam in the past. 3) The server hostname does not exist in DNS or is not a fqdn (fully qualified domain name) 4) The reverse dns record of the IP address is not the same then the server hostname. 5) Server hostname and postfix mailname are not the same. 6) You have a spf recrd for the domain but the mailserver that is used to send the email is not in the allowed IP list of the spf record.
