We use DNS a lot in email, particularly for authentication, so diagnosing why DNS isn’t returning what we expect it to is a pretty common challenge. And DNS responses aren’t exactly the clearest thing to understand. There are two types of DNS server we need to know about. When we publish DNS records for our own domain we add them to a nameserver that is authoritative for our domain...
Why is designing spam filters like designing bear-proof trash cans?
Jody asks “Are ‘prefetch opens’ and ‘proxy opens’ the same thing?” Non-human opens An “open” is just someone (or something) fetching a remote image. A non-human-interaction (NHI) open is where some sort of automation fetches the image without human interaction – i.e. it’s fetched when the automation feels like it, not triggered by a user...
If you’re using sendy and you’ve found that RFC 8058 one click unsubscribe fails – or, worse, seems to work but doesn’t actually unsubscribe the user – you should take a look at James’ workaround.
Lots of times I see someone asking a question and they talk about their sending domain. And it’s sometimes not 100% clear which domain they mean by that – and when we’re talking about alignment and reputation it can make a difference. So here’s a list of (some of?) the different places a mailserver uses a domain. Hostnames Machine Hostname: What the operating system...
I always want to say “Emails, and Opens, and Clicks… Oh My!” when I’m talking about them. We really want to understand how a mailbox provider perceives the streams of email we send them. Some of the things the provider looks at are technical and objective – is the email coming from who it claims to be coming from? Is there an attachment that contains a virus? We have...
We’ve mentioned SWAKS here a few times – but I always use it for delivering test mail directly to a recipient’s MX.
Matt, over at EmailKarma, posted today pointing out that it supports authentication, so you can also use it to send email out from your commercial smarthost. Handy.
Check it out.
When trying to find out why Something Went Wrong during delivery of an email we sometimes want to look at the route by which it was delivered. Did SPF break because of an unexpected forward? Did DKIM break because an intermediate mailserver modified the content of the message? Why did it take nine hours from the mail leaving our ESP to make it to the inbox? Did it really leave our ESP when they...
TXT Records DKIM public keys live in DNS TXT records. A DNS TXT record contains strings of text, and each string is limited to be no more than 255 characters long. Recommended practice for DKIM at the moment is to use 2048 bit keys (1024 bit keys aren’t insecure, but they’re looking a bit weak and 2048 is where folks have mostly decided to move to). But a 2048 bit DKIM key is going to...
The worst thing about the yahoogle requirements has been their use of the term “one-click unsubscribe”. It’s an overloaded term that’s being used here to mean RFC 8058 in-app unsubscription. That’s a completely different thing to what one-click unsubscription has been used to mean for decades, often in the context of complying with legal requirements around...
RSS - Posts