Hello,
I have a customer that has had many of its email accounts blacklisted. (554 Denied [CS] (Mode:normal)) AT&T is the provider. The blacklist info comes from AT&T but calling AT&T is nothing but an exercise in futility. They say that Yahoo is in control and to email Yahoo. We have done so. It has been 5 days since.
We can email if we go thru the web server.
Any thoughts?
Thanks
Hey CT - From the information you have provided, it would appear that:
* Some of your customer's emails have been identified as spam. Once enough emails, from the same address, have been identified as spam, that address will then be blacklisted altogether. (554 error = SPAM).
* AT&T are most likely in the clear and the addresses would have indeed been blacklisted by Yahoo.
Not too sue you will have any joy with Yahoo either; their spam system would be automated and applied across the board.
There is something, some mention or terminology contained in your customer's emails which is causing them to be identified as spam. Setting up new email addresses or changing over to a different webmail service would only provide a temporary solution; most services would use very similar parameters for identifying spam. Your customer would need to identify exactly what term or phrase in the emails is tripping the Spam alarm and either not include that any more or find a way of re-wording it.
HTH,
Cheers.....Jim
OZ,
Thanks for the info. This customer is a legit business. I am sure that there is no intentional SPAM sent out.
In a quandry......)))(((
Yep CT, I'm sure you are right. Unfortunately there can sometimes be a fine line between what these Spam systems see as spam and the actual intent.
A phrase in the email such as 'Special Offer' or something similar will often [unintentionally] ring the Spam alarm.
Is there a chance that an email account was hacked? If yes, how can I repair the problem ?
Thanks
Yes CT, that would definitely be a possibility. What led me to to believe it was unlikely was this from your original post: [i:uwgfzwvm]"I have a customer that has had[u:uwgfzwvm] many [/u:uwgfzwvm]of its email accounts blacklisted"[/i:uwgfzwvm]
It would be rather unusual for "many" email accounts, all from the same client, to be hacked. Much more likely your customer's emails are being flagged as spam. These spam identification systems can be pretty aggressive; the emails don't even need to actually contain any suspect material, just sending out relatively large numbers of emails, all at once, from the same email address can trip the alarm.
I am assuming the "blacklisting" means that the customer can no longer log-on to the affected Yahoo accounts??
If that is the case then changing the passwords would not be possible. So the only other course of action would be to contact Yahoo (which you have already done) and hope they can sort it out for you.
In the meantime, if you do suspect the accounts may have been hacked, I would be scanning the host machine(s) for any rootkit or spyware; use programs such as MBAM and/or SAS as well as Sophos Anti-Rootkit and any resident security software.
Also, have a read through [url=http://www.pcnsdfw.com/blacklisting.html:uwgfzwvm]HERE[/url:uwgfzwvm] CT, it may provide some insight.
Cheers.....Jim
[quote="ozbloke":118n0n22]It would be rather unusual for "many" email accounts, all from the same client, to be hacked. Much more likely your customer's emails are being flagged as spam. These spam identification systems can be pretty aggressive; the emails don't even need to actually contain any suspect material, just sending out relatively large numbers of emails, all at once, from the same email address can[/quote:118n0n22]
That is absolutely correct, Jim. So can the amount of emails sent to a domain during a specific time frame. An example would be sending 1000 emails to @Comcast addresses in an hour.
To be thorough I would need to know the domain and addresses used, the method they are using to send the emails (program, service, etc), how many emails they are sending at a time, and how many addressees there are for each email. Of course you don't want to publish that info out in the open. You can post the info and "X" out all the private info (so others can follow the thread or find it by Google for help) and PM me the actual info.
The domain is xxxxxxx.com. They use emails as a normal business replying to questions, sending quotes, and status updates of jobs.
Some accounts (apprx 15) use Outlook and others use Outlook Express.
Emails do go thru to
[quote="carbonterry2":16ld9qfu]The domain is xxxxxxx.com.[/quote:16ld9qfu]
Well there's your problem. I would block email from them too.
The x's are to hide the domain.
The real addy was PM'ed to Dave per his request in his reply
Pretty sure Zig realises that CT. He's just having some fun with you!!
I thought it was pretty funny anyway.
OK....ya' got me
For what it's worth, I haven't received any PM from you Terry.
1 Guest(s)
