Want to protect your cyber security and still get fast solutions? Ask a secure question today.Go Premium

x
  • Status: Solved
  • Priority: Medium
  • Security: Public
  • Views: 1829
  • Last Modified:

Postmaster and Abuse problem.

When we run a DNS report at DNSStuff.com, we get the following errors that we want to fix:

"FAIL          Acceptance of postmaster address      ERROR: One or more of your mailservers does not accept mail to postmaster@domain.com. Mailservers are required (RFC822 6.3, RFC1123 5.2.7, and RFC2821 4.5.1) to accept mail to postmaster.

exchange.domain.com's postmaster response:<br /> >>> RCPT TO:<postmaster@domain.com><br /> <<< 554 Transaction Failed Unsigned DSN for [spoofed?] message not originating here. <br />"

AND

"WARN      Acceptance of abuse address      WARNING: One or more of your mailservers does not accept mail to abuse@domain.com. Mailservers are expected by RFC2142 to accept mail to abuse.

exchange.domain.com's abuse response:<br /> >>> RCPT TO:<abuse@domain.com><br /> <<< 503 Command sequence error: rcptto <br /> "

Both Postmaster and Abuse are setup and receiving emails. What are we missing?  
0
cbentsen
Asked:
cbentsen
  • 2
1 Solution
 
artmsCommented:
Please check domain mx records, maybe you have secondary MX server which incorrectly responds to queries.

When you will know all you mx records, then telnet to each one:

telnet mx.domain.com 25
HELO domain.com
MAIL FROM: <abuse@domain.com>
RCPT TO: <abuse@domain.com>

Check the same on another mx (if it exists). After each telnet command you should receive 250 some_extra_text, >250 means you have some temporary or permanent error.
0
 
cbentsenAuthor Commented:
OK, I did the telnet test to abuse and it went through.  We only have the one MX record pointing to our exchange server. Abuse and postmaster can get mail, but the reports at DNSStuff.com say that we don't accept mail at either address.
0
 
artmsCommented:
Please check your email server logs, maybe you are using some spam fighting techniques (like SPF) and it blocks dnsstuff checks. Repeat the test and watch the logs and why it is rejecting/accepting, or maybe it is simply bogus message from dnsstuff...
0

Featured Post

Get your Conversational Ransomware Defense e‑book

This e-book gives you an insight into the ransomware threat and reviews the fundamentals of top-notch ransomware preparedness and recovery. To help you protect yourself and your organization. The initial infection may be inevitable, so the best protection is to be fully prepared.

  • 2
Tackle projects and never again get stuck behind a technical roadblock.
Join Now