This is what I just received from the ISP. Attached is a screenshot of my setup. That is all there is. So what next? I will not use outlook express. CSSJR
--- Begin Message ---
- From: "Andy Brown" <andy mocksville com>
- To: "'Claude S. Sutton'" <claudesutton cognisurf com>
- Subject: RE: Problems with my email
- Date: Wed, 26 Jul 2006 18:23:22 -0400
Claude, The denial is not based on the absense of a RDNS lookup; it is based on your client software not authenticating. The transcript you provided of the SMTP exchange would have worked on our network (dial-up) because you would have been coming from our network's subnet, which is inherently trusted by the mail server. Since you are coming from a foreign subnet, the mail server requires you to provide credentials to relay (send thru) mail. This is a SPAM prevention mechanism that is universal among ISP's. In Outlook Express this Authentication can be turned on at: Tools:Accounts:(Properties of relevant mail account):Servers (Tab):Check the "My Server requires authentication" checkbox. While you're there click on the 'Settings' button to the immediate right and verify the radio buttong beside "Use same settings as my incoming mail server." is selected. Essentially this is what used to be referred to as 'POP before SMTP' meaning it would log into the server as your POP account, and while still logged in it sends mail as well. In this way the mail server verifies you are OK to send mail before allowing the relay. You'll know it's occuring properly if your SMTP capture includes log in information PRIOR to the MAIL FROM: and RCPT TO: commands. I will add, that the Shield's Up report's suggestion that the absense of a RDNS lookup for your IP is 'generally a good thing', is false. Without a properly configured RDNS lookup there are sites and applications that will not trust you. This issue is unrelated to us, however. What they might have been better saying, is that the RDNS lookup should be obscure enough not to lead someone back to your door. I understand you have a Linux system, which we want to see more of, but to date we haven't documented all of the possible mail clients configurations. However, all of the settings are similar among ALL email clients, and should vary only in field labels. I assure you there is a setting in there that will be trivial to enable which will force the SMTP authentication to occur, and your issue will be resolved immediately. Keep me posted, Andy -----Original Message----- From: Claude S. Sutton [mailto:claudesutton cognisurf com] Sent: Wednesday, July 26, 2006 5:22 PM To: Andy Brown Subject: RE: Problems with my email It is not. See this: claude69694 mythinkpad:~$ telnet mail.2it.net 25 Trying 198.70.140.15... Connected to hermes.ncaccess.net. Escape character is '^]'. ma220 [hermes.ncaccess.net ESMTP for 2it.net; Wed, 26 Jul 2006 17:14:00 -0400 mail from: claudesutton cognisurf com 250 2.1.0 claudesutton cognisurf com Sender ok rcpt to: claudesutton suttonmachine com 450 4.7.1 claudesutton suttonmachine com Relaying temporarily denied. Cannot resolve PTR record for 166.165.228.5 That DNS is that of Alltel wireless borad band, However, I would get the same thing if I used dialup and your dialup number. Shield's Up reports: Your Internet connection has no Reverse DNS Many Internet connection IP addresses are associated with a DNS machine name. (But yours is not.) The presence of "Reverse DNS", which allows the machine name to be retrieved from the IP address, can represent a privacy and possible security concern for Internet consumers since it may uniquely and persistently identify your Internet account - and therefore you - and may disclose other information, such as your geographic location. When present, reverse DNS is supported by Internet service providers. But no such lookups are possible with your current Internet connection address (166.165.228.5). That's generally a good thing.
--- End Message ---
Attachment:
Screenshot.png
Description: PNG image
