Spam Filter ISP Support Forum

  New Posts New Posts RSS Feed - Invalid MX record
  FAQ FAQ  Forum Search   Register Register  Login Login

Invalid MX record

 Post Reply Post Reply
Author
asger View Drop Down
Newbie
Newbie
Avatar

Joined: 11 April 2008
Status: Offline
Points: 7
Post Options Post Options   Thanks (0) Thanks(0)   Quote asger Quote  Post ReplyReply Direct Link To This Post Topic: Invalid MX record
    Posted: 11 April 2008 at 8:46am

Hello.

We newly installed Spam Filter ISP with great success.
Thanks!
A mail is filteret out to be spam, which is not spam:
- Invalid MX record -
Recipient: kieke@ptg.dk
 
MX record look up in http://www.mxtoolbox.com/ conclude that the MX record obviously is OK.
Can anybody help??
 
04/11/08 10:24:13:343 -- (1116) Connection from: 88.87.43.136  -  Originating country : Norway
04/11/08 10:24:13:437 -- (1116) Received MAIL FROM: <sales@support.objectplanet.com>
04/11/08 10:24:13:468 -- (1116) Received RCPT TO: kieke@ptg.dk
04/11/08 10:24:13:468 -- (3128) Received RCPT TO: armando@tvind.dk
04/11/08 10:24:13:562 -- (4488) Received MAIL FROM: <barrerayb5@baldonimoto.com>
04/11/08 10:24:13:609 -- (1116) Resolving 88.87.43.136 - support.objectplanet.com
04/11/08 10:24:13:656 -- (3128) Resolving 77.74.226.162 - Not found
04/11/08 10:24:13:656 -- (3128) - Reverse DNS not found -
04/11/08 10:24:13:656 -- (3128) 77.74.226.162 - Mail from: donpratt@wlimproducts.com To: armando@tvind.dk will be rejected
04/11/08 10:24:13:812 -- (1116) - Invalid MX record -
04/11/08 10:24:13:812 -- (1116) 88.87.43.136 - Mail from: sales@support.objectplanet.com To: kieke@ptg.dk will be rejected
04/11/08 10:24:14:015 -- (1116) Starting quarantine procedures
04/11/08 10:24:14:015 -- (3044) Adding to Quarantine file:QrtFA1.tmp
04/11/08 10:24:14:015 -- (1116) Created thread (3044) to add email to quarantine
04/11/08 10:24:14:015 -- (1116) Starting bayesian procedures
04/11/08 10:24:14:046 -- (3044) EMail from sales@support.objectplanet.com to kieke@ptg.dk was received and quarantined. Size: 1 KB, 1024 bytes
04/11/08 10:24:14:062 -- (4560) Time to add Msg to Bayes corpus:0
04/11/08 10:24:14:609 -- (4488) Received RCPT TO: anders@christianshede.dk
04/11/08 10:24:14:671 -- (4488) Resolving 85.104.12.108 - dsl85-104-3180.ttnet.net.tr
04/11/08 10:24:14:812 -- (4508) Received MAIL FROM: <vyylanr@bookchase.com>
04/11/08 10:24:15:187 -- (1116) Blacklist cache - Added 88.87.43.136 to limbo
04/11/08 10:24:15:187 -- (1116) Disconnect
 
Regards
Asger
Back to Top
Desperado View Drop Down
Senior Member
Senior Member
Avatar

Joined: 27 January 2005
Location: United States
Status: Offline
Points: 1143
Post Options Post Options   Thanks (0) Thanks(0)   Quote Desperado Quote  Post ReplyReply Direct Link To This Post Posted: 11 April 2008 at 10:48am
Asger,
 
 
The domain "support.objectplanet.com" does not have any MX record so I am not sure what you looked up.  It does have an "A" record of 88.87.43.136 which is their mail server but they really should have an MX. 
 
No MX record(s) is either lazy administrators, bad administrators or in most cases, spam sources.  The RFC that applies to this states that if there is no MX record, mail servers *should* (NOT MUST) attempt delivery to any "A" record but again, this is sloppy DNS.  All domains that receive mail really should have MX records.
The Desperado
Dan Seligmann.
Work: http://www.mags.net
Personal: http://www.desperado.com

Back to Top
asger View Drop Down
Newbie
Newbie
Avatar

Joined: 11 April 2008
Status: Offline
Points: 7
Post Options Post Options   Thanks (0) Thanks(0)   Quote asger Quote  Post ReplyReply Direct Link To This Post Posted: 11 April 2008 at 11:53am

Desperado.

Thanks a log for quick reply.
I looked up the MX record in http://www.mxtoolbox.com/
support.objectplanet.com gave result: No MX record
objectplanet.com gave result:
ns1.domaindiscover.com report the following MX records:
Preference: 10, Host Name: support.objectplanet.com, IP: 88.87.43.136, TTL: 3600.
They have a feature "Test e-mail" server, which ESMTP Sendmail gives result Good, OK.
 
It is a mail from a company - used for reply to e-commerce...
 
My questions:
Can I configure my Spamfilter to overcome this sort of error?
Do you know if this faulty configuring of MX record is widespread?
 
I have another example here, also from a company in e-commerce...
Not spam...
See case no. 4752
 
04/08/08 12:32:21:218 -- (4752) Received MAIL FROM: <apache@rhdk2.gpserver.dk>
04/08/08 12:32:21:218 -- (5088) Received RCPT TO: andrea@drh-holsted.org
04/08/08 12:32:21:218 -- (5088) Mail from: AngelakilgoreGalvan@old-versions.net
04/08/08 12:32:21:218 -- (5088) 88.245.228.2 - Mail from: AngelakilgoreGalvan@old-versions.net To: andrea@drh-holsted.org will be rejected
04/08/08 12:32:21:234 -- (4752) Received RCPT TO: kieke@ptg.dk
04/08/08 12:32:21:265 -- (4752) Resolving 195.41.114.68 - tdc1-68.gpserver.com
04/08/08 12:32:21:265 -- (4752) - Invalid MX record -
04/08/08 12:32:21:265 -- (4752) 195.41.114.68 - Mail from: apache@rhdk2.gpserver.dk To: kieke@ptg.dk will be rejected
04/08/08 12:32:21:265 -- (3884) Received RCPT TO: sandra@drh-holsted.org
04/08/08 12:32:21:265 -- (3884) Mail from: VirginiarigorousPearce@michaelbuble.com
04/08/08 12:32:21:265 -- (3884) 88.245.228.2 - Mail from: VirginiarigorousPearce@michaelbuble.com To: sandra@drh-holsted.org will be rejected
04/08/08 12:32:21:312 -- (4752) Starting quarantine procedures
04/08/08 12:32:21:312 -- (4752) Created thread (4880) to add email to quarantine
04/08/08 12:32:21:312 -- (4752) Starting bayesian procedures
 
Regards
*Asger
Back to Top
Desperado View Drop Down
Senior Member
Senior Member
Avatar

Joined: 27 January 2005
Location: United States
Status: Offline
Points: 1143
Post Options Post Options   Thanks (0) Thanks(0)   Quote Desperado Quote  Post ReplyReply Direct Link To This Post Posted: 11 April 2008 at 12:15pm
Asger,
 
In the case of:
04/08/08 12:32:21:265 -- (4752) 195.41.114.68 - Mail from: apache@rhdk2.gpserver.dk To: kieke@ptg.dk will be rejected
This is even worse.  the address "apache@rhdk2.gpserver.dk" is not an address that can be delivered to as there is no mail server there at all.  This is what the "MX" record test is supposed to test for ... no valid return path.
The Desperado
Dan Seligmann.
Work: http://www.mags.net
Personal: http://www.desperado.com

Back to Top
asger View Drop Down
Newbie
Newbie
Avatar

Joined: 11 April 2008
Status: Offline
Points: 7
Post Options Post Options   Thanks (0) Thanks(0)   Quote asger Quote  Post ReplyReply Direct Link To This Post Posted: 11 April 2008 at 1:53pm
Hello Dan.
Thank you - I really appreciate you answers.
I fully understand the problem.
BUT what do I do as administrator on my mailserver...
My custumors do not get some mails because other operators not complying to RFC guidelines/rules.
Is the only solution to take contact to these operaters and try to make them do things correctly.
 
Thanks a lot!
Asger
Back to Top
Desperado View Drop Down
Senior Member
Senior Member
Avatar

Joined: 27 January 2005
Location: United States
Status: Offline
Points: 1143
Post Options Post Options   Thanks (0) Thanks(0)   Quote Desperado Quote  Post ReplyReply Direct Link To This Post Posted: 11 April 2008 at 2:01pm
Asger,
 
My experience tells me that you will not have much sucess contacting the other admins though you can try.  Try removing the "no MX" test from spamfilter and see how it impacts your spam quantity.
The Desperado
Dan Seligmann.
Work: http://www.mags.net
Personal: http://www.desperado.com

Back to Top
asger View Drop Down
Newbie
Newbie
Avatar

Joined: 11 April 2008
Status: Offline
Points: 7
Post Options Post Options   Thanks (0) Thanks(0)   Quote asger Quote  Post ReplyReply Direct Link To This Post Posted: 11 April 2008 at 2:51pm
Hello Dan.
Yes - I can try "no MX" test, and monitor the amount of spam.
Thanks for you help!
Smile
 
Asger
 
Back to Top
AndrewD View Drop Down
Groupie
Groupie
Avatar

Joined: 03 May 2008
Location: Australia
Status: Offline
Points: 71
Post Options Post Options   Thanks (0) Thanks(0)   Quote AndrewD Quote  Post ReplyReply Direct Link To This Post Posted: 04 May 2008 at 1:46am
There is another solution.
Depending on how your network is setup.
in my instance, mailspam looks to my DNS server on my 2003 server, my 2003 server then forwards requests to the ISP DNS if it cannot resolve. so in this issue, i could simply create an MX record for the badly configured one's.
This is not a *great* solution as it will only work as long as the sender's MX does not alter.
As has been said the admins at the senders end are bad operators and should not be doing the job that they are. but trying to get some idiot somewhere to change there practice is near on impossible.
So creating an MX for them on your own in house servers is a way around this, and probably better than turning off the filter alltogether.
 
Good Luck.
Back to Top
 Post Reply Post Reply
  Share Topic   

Forum Jump Forum Permissions View Drop Down



This page was generated in 0.125 seconds.