OnsiteComputerDoctor
asked on
Not Blacklisted, but messages are rejected from certain recipient mail servers
Good Morning-
I have a customer whose webserver was hacked. Got him delisted from SURBL and Fabelsources.
Removed the website completely because his webdeveloper doesn't know how to lock down the security for the site :(.
Since beling delisted, certain recipients still block him. Below is an example from Yahoo.
I proved that the issue is not coming from his local outlook client by sending from a different clean outlook client.
Customer uses Hosted Exchange with SMARSH.
Any help is greatly appreciated.
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed:
address@yahoo.com
host mta5.am0.yahoodns.net [98.136.216.26]
SMTP error from remote mail server after end of data:
554 Message not allowed - [PH01] Email not accepted for policy reasons. Please visit http://postmaster.yahoo.com/errors/postmaster-27.html [120]
I have a customer whose webserver was hacked. Got him delisted from SURBL and Fabelsources.
Removed the website completely because his webdeveloper doesn't know how to lock down the security for the site :(.
Since beling delisted, certain recipients still block him. Below is an example from Yahoo.
I proved that the issue is not coming from his local outlook client by sending from a different clean outlook client.
Customer uses Hosted Exchange with SMARSH.
Any help is greatly appreciated.
This message was created automatically by mail delivery software.
A message that you sent could not be delivered to one or more of its recipients. This is a permanent error. The following address(es) failed:
address@yahoo.com
host mta5.am0.yahoodns.net [98.136.216.26]
SMTP error from remote mail server after end of data:
554 Message not allowed - [PH01] Email not accepted for policy reasons. Please visit http://postmaster.yahoo.com/errors/postmaster-27.html [120]
FOX
Go to mxtoolbox.com and check there as well. You may still be blacklisted
ASKER
Mxtoolbox shows clear.
Found another checker that indicates more work to be done.
Found another checker that indicates more work to be done.
ASKER
If I run analysis on SURBL.ORG and it shows up as blacklisted. But MXToolbox returns a clean search, does that indicate MXToolbox is not querying the blacklist properly?
ASKER
Not blacklisted anywhere. Got removed from SURBL. Emails still sometimes get blackholed. Any thoughts\recommendations?
ASKER CERTIFIED SOLUTION
membership
This solution is only available to members.
To access this solution, you must be a member of Experts Exchange.
ASKER
Dns seems most likely. Thank you
if your client still experiences the same problem today, it is very likely that he is both still blacklisted, and still sending spam. the dns cache theory is something that can last for a couple of days in most cases ( ISPs servers disregarding the TTLs of dns entries ) and for a week or two in the case of private servers. i doubt yahoo's servers will keep delisted entries for more than a few days. but they have their own private blacklist with their own policies. if the problem is not solved, feel free to post on.