Thanks,This email has failed its domain’s authentication requirements. It may be spoofed(new window) or improperly forwarded
There are few possible scenarios here:Jim5678 wrote:google mail seems to be dropping password resets before they even get to spam.
Code: Select all
init=/sbin/openrc-init
-systemd -logind -elogind seatdI am NaN! I am a man!
probably. But you cant hide behind that shield if you also doesn't include todays standard in that, if your servers doesnt use something developed 30 years ago to help decrease spam mails. Like server naming through proper dns to submissions or at least dkim it from your outgoing servers (developed 10 years ago).If Google is breaking this for multiple senders, that suggests this is a Google problem, not a sender problem. The sender might or might not have relevant data in their logs, but Google should have a log of what happened.
Code: Select all
Recieved: from goshawk.gentoo.org (unknown [140.211.166.177]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature RSA-PSS (4096 bits) server-digest SHA256) (No client certificate requested) by smtp.gentoo.org (Postfix) with ESMTPS id 34F4134336D for <some-name-here@web.de>; Mon, 29 Jan 2024 18:10:50 +0000 (UTC)
I totally understand that, if they not going to do a proper bounce for something they not really accept. Doing a notification "Hey we quarantined that mail for you" to their customers/users, might be fine. IF they do a proper report to the user about that and have a way to do a "Thanks, but no thanks. Let it through"-Rule to that. In my opinion this is a good practice for a general mta. But it does not look like google does so, but i dont use them. So yeah. I just wanted to put out my thoughts about doing smtp configuration, which gentoo devs might not doing from my point of view. But also not having the time to volunteer to such a task.Hu wrote:I cannot speak to the quality of Gentoo's outgoing SMTP setup. My point though is that Google caused this problem by setting their servers to reject these mails, and seemingly compounded it by not bouncing the mails in a clear way and not providing anyone with good logs. Perhaps the Gentoo project should change their mail server configuration. Perhaps not. Your mention of that Google blog post is the first I have heard of these requirements. After having read that post, I am particularly disgusted with Google on this point. They spend a lot more effort grandstanding and misleading than they do on the problem. Of course blocking unauthenticated messages causes a massive reduction in successfully delivered unauthenticated messages, because they're being blocked.
If Google is not going to report this in a way that makes it clear what should be done (and silently losing all this e-mail does not count to me as a good report), then I cannot condemn the volunteer Gentoo mail administrators for not handling this proactively.
Soooo... you suggest someone with access to b.g.o and a valid gmail adress (for testing) should open a bug about it. I can do it, but have not any gmail account on hand to set up a proper "hey look test it here" account.Hu wrote:I did a cursory search of [bug=]bugs.gentoo.org[/bug] and did not find any open bugs requesting a change to the Gentoo SMTP infrastructure. Conveniently, since Google is already dropping Gentoo-generated mail (despite that they are supposed to start the new restrictions in February), anyone who uses Google mail, and does not already have a Bugzilla account, will now be unable to register a Bugzilla account to their Google mail and thus be unable to file a bug requesting the change.