AOL Placed on Spam Blacklist 364
Hacker-X writes "According to this item over at Spam Kings,
AOL has had a large swath of its IP addresses added to the Mail Abuse Prevention Systems (MAPS) Real-time Blackhole List (RBL).
The RBL is used by many corporations and large ISPs to filter spam.
MAPS evidently started blocking the AOL mail servers less than 24 hours after filing a complaint with AOL's abuse desk. The block was initiated in response to spam emanating from AOL mail servers."
Happening to google too! (Score:2, Informative)
This is an automatically generated Delivery Status Notification
Delivery to the following recipient failed permanently:
[an address forwarded to gmail.com]
Technical details of permanent failure:
PERM_FAILURE: SMTP Error (state 10): 554 Service unavailable; Client host [64.233.184.203] blocked using bl.spamcop.net; Blocked - see http://www.spamcop.net/bl.shtml?64.233.184.203
--
The address: 64.233.184.203 is wproxy.gmail.com
Re:Overzealous (Score:5, Informative)
[UPDATE: Looks like MAPS changed its mind. As of Tuesday afternoon ET (GMT -4:00), AOL's listing at the MAPS site is gone, and a lookup shows AOL's mail servers no longer seem to be on the MAPS RBL list. No word yet on whether AOL resolved the spam problems, or if MAPS just decided to give AOL more time.]
Re:Overzealous (Score:5, Informative)
This was caused by one spam. Let me just repeat that: out of 60 million users MAPS saw one spam coming from AOL's outbound mail servers [aol.com].
Now AOL does have a set of IPs out of which some spam does emanate - the rlyIPXX block [aol.com] (64.12.138.(7-9)). This is the IPs that they redirect direct-to-port25 mail through, and they actively encourage people to block this range. It's been publicly stated that they intend to shut this activity down real soon now, but in the meantime most people just block that range and don't see a problem.
Check the anti-spam newsgroups and mailing lists some time. AOL is hugely respected in anti-spam terms these days. And deservedly so.
On SpamCop too (Score:4, Informative)
No sympathy (Score:1, Informative)
That said, I am glad there *are* people using MAPS, and I have absolutely no sympathy for AOL. They have some of the most idiotic and overzealous spamfilters on the planet, and I've been burned by them on a number of occasions. My server IPs have never been on any public blacklist, and I've never had any trouble getting email to other mass providers (Hotmail, Gmail, Yahoo). But there has been a steady stream of problems with AOL.
As far as I'm concerned, if this hurts them, good. They're getting a taste of their own medicine.
Update from link (Score:2, Informative)
Re:Overzealous (Score:2, Informative)
Re:Overzealous (Score:3, Informative)
By adding AOL to the blacklist, you might persuade AOL to clean up their act, maybe, but you also will find a lot of people dropping your blacklist because _their_ customers got angry ...
Fair or not, you really can't add AOL's main mail servers to any sort of mail blacklist without serious repercussions. Mostly bad.
Re:Overzealous (Score:5, Informative)
Compared to Yahoo and MSN/Hotmail, AOL is completely buttoned down and has their act together.
Re:Happening to google too! (Score:2, Informative)
64.233.184.203 not listed in bl.spamcop.net [spamcop.net]
Re:Overzealous (Score:4, Informative)
How many double opt-in e-mail lists have been blocked...
Do you mean "confirmed opt-in"? If so, you should say so. "Double opt-in" is a meaningless phrase, beloved by spammers. I have every confidence that you're not a spammer, but if you speak in the spammers' language, people will get the wrong idea about your lists.
Comment removed (Score:4, Informative)
Re:AOhell (Score:3, Informative)
Don't credit things to people if they didn't do them. Carl wasn't responsible for outbound port 25 tagging/filtering/blocking. I know that for an absolutely certainty. And while Carl may have done a lot of anti-spam work, the outbound port 25 work is what dropped AOL from one of the top 5 spammers to not even on the list of the top 50 as soon as it was implemented (according to SpamCop, at the time).
-Todd
Re:Overzealous (Score:0, Informative)
Re:Overzealous (Score:3, Informative)
Re:AOL deserved it (Score:4, Informative)
I just pulled a report from one of our membership databases. Of 370,918 users, there were 39,692 distinct domain names. In the top 50 of that list are a few I can't call. wanadoo.fr . t-online.de, libero.it, bluewin.ch, tin.it, planet.nl. You get the idea.
If everyone took up AOL's anti-spam scheme, I would need a staff of people who's sole job was to call all the ISP's, and make sure we weren't blocked.
The *BETTER* method is not to block based on any one rule. It's what you see with hotmail, mail.yahoo.com, gmail, etc.. Bad mail is received, and filtered into a spam box.
With our mail servers, we do the same thing. We use mailscanner (mailscanner.info), with spamassassin, 5 blacklists, and two virus scanners. If the score is high enough, it simply adds a bit to the subject line.
[UBE/UCE/SPAM] original subject
My users have the option of deleting those automatically, or filtering them off to another box.
Right now, I have 6,634 messages in my spam box, and 1052 in my inbox. You could say 15.8% of my mail is real, but that's not completely accurate. A lot of the "real" messages in my inbox are automated messages, such as server notifications.
The ***HUGE*** difference between what I do and what AOL does is this.. When I get a message, even though the mail server suspects it is spam, it still gets delivered into my spam box. **I** have the option of choosing what **I** want done with it. If **I** want to delete it, I can. If **I** want to have the mail server delete it before it even gets to my box, I can. If **I** want to keep them all, so I can make statistics about how many spams I get, I can. And if someone says "I sent you an Email, but never got a reply", I can check my spam box. The last time that happened was over 6 months ago. It's very rare that a legitimate message gets flagged as spam.
Since I know for a fact that AOL blocks legitimate messages, that means that they are completely in the wrong with their methodology.
I've spent several conference calls on with AOL. They believe that they are the Internet. They are the only mail server, and anyone who isn't using AOL is some sort of evil hacker. It was really frustrating, when every reference they made indicated there was only AOL. They said that their blacklist protects all mail servers. Even mine? Yes. So I asked how I got that protection. They don't know. It's just there. Like divine intervention, or eye boogers. I tried to explain that I'm a SysAdmin, and I may know a little bit about the magic of the Internet. He refered me to their standard page, http://postmaster.info.aol.com
Yes, we are already in the "feedback loop". They know all our networks. They have the email and phone number of a contact who's always available. The contact watches the abuse mail for the occasional misguided soul who hits "Abuse" instead of "Reply". Every month or two, we get some part of the network blacklisted. We call up, and they promise to 'whitelist' us. We dance around this with a few dozen calls, and then everything is fine for a month or two. Lather, rinse, repeat.
It's *REALLY* annoying to **NEED** to call another company to ask for their permission to play on their Internet with them.. Like I said at the beginning of this message, almost 40,000 domains. If everyone played this way, that would mean 40,000 calls so people could send out EMail. That *ALSO* means I would need to have phone support people ready to answer 40,000 calls. I don't really want that. My budget for staff is better used for staff who do a job which is helpful to the company.
I guess if 40,000 providers did hire say 8 employees to handle calls (4 outbound, 4 inb
Re:Use RBL for TEMPORARY (4xx) rejections (Score:3, Informative)
Most spam engines don't use a mail queue, which is why greylisting [openbsd.org] works so well.
Sol'n (Score:1, Informative)
route add -net 64.163.43.0 255.255.255.0 127.0.0.1
[may need some slight tweaks for various OSen]
Re:Overzealous (Score:2, Informative)
Duh.
Re:AOhell (Score:3, Informative)
I'd assume he's still doing good things at AOL as far as anti-spam goes, given his new title.
Mail acceptance/rejection (Score:3, Informative)
One of the big necessities we had when picking our current system was that it had to be able to validate an address during the SMTP exchange; it does this by having access to the same database the mail storage back-end uses for deciding where to stuff the message after it is accepted. If it isn't in the database, the message gets rejected before it enters the hard-working parts of the system.
That's just one of the gauntlets it passes through on our system, but it stops 20% of the traffic. Our internal block lists get another 50%, all with the speed of a few SQL queries. The 30% that's left do not impose much load on the other tests, and our whitelists jump over the later tests for recognized senders.
But, if you are like some universities and businesses, and can't reject ANYTHING due to policy, it's a moot point, anyway...