@BraswellJay said in Email phishing attempt against one of our vendors was successful ...: Enough to sting but not crippling to us or the vendor involved. Thankfully!

Date/Time issue?

What about archiving instead of backup? MailStore is good

@Natchos said in 3rd party spam filter solution pricing: We have been using MS Exchange Online Protection for the last 8 years. It's been working good with our on-premise Exchange server. Price we pay is 18.99$ per user per year. We are almost at 50 users. I signed up for this. It was only $1/user/month Switched things today. So far, all is working normally.

@dbeato said in 550 5.0.350 Remote server returned an error: @WLS-ITGuy said in 550 5.0.350 Remote server returned an error: @dbeato said in 550 5.0.350 Remote server returned an error: @WLS-ITGuy said in 550 5.0.350 Remote server returned an error: 571 Delivery not authorized, message refused That messages means a lot of things but yeah Whitelist on their Spam Filter end, Adding your IP to your SPF record, check if there is anything on the body of the message triggering the block on their end (i.e. URL or site link). It is Office 365 with Exchange - I have created all the records that Microsoft wanted me to. So, just to be clear, this is 100% not on my end, correct? It shouldn't be on your end, the message is coming from the recipient's end server. Right, which means that they received it.

@scottalanmiller said in How to handle inbox with multiple users in Zoho or O365?: @Dashrender said in How to handle inbox with multiple users in Zoho or O365?: @scottalanmiller said in How to handle inbox with multiple users in Zoho or O365?: @Dashrender said in How to handle inbox with multiple users in Zoho or O365?: What I don't know is, can more than one person share an alias address in Zoho? No, you'd need a distribution list for that. An alias can only point to one thing. Well the distro list would get you incoming, but not outgoing ability on that address. https://help.zoho.com/portal/community/topic/how-do-i-send-an-email-from-the-group-email-address-i-e-from-sales-mycompany-com Zoho Groups allow it. So does Office 365/Exchange. I now have about 10 domains where we have users with their own respective groups for domains that they need to send out from. The main issue with this is dealing with mobile devices; there isn't a way that I know if to send from a group.

@Obsolesce said in Office 365 NDR for strange email address.: Azure AD > Monitoring > Sign-ins: to track unauthorized access to accounts. There's no telling what all they did, so it may be best to back up the data and recreate the account... and of course enable 2FA/MFA on ALL accounts. This is a good idea. You can also set alerts to be notified if forwarding rules are created like the ones you discovered.

@Emad-R said in Researching Mailing List Email Server Options: So you dont want the SMTP server part, just the sending to many and if a user opt to be removed that will auto reflect ... Either way. If we handle the SMTP that's fine. If we don't, that's fine.

@IRJ said in Email investigation - have we been hacked?: @Dashrender said in Email investigation - have we been hacked?: one of the addresses is for an @ameritrade.com address, but only for one person. I have yet to find any connection via google searches between this person and ameritrade.... so I'm not sure why this was tried? Thoughts? You dont have that data either, right? What do you mean?

@Dashrender Confirmed, our MailCow is using ActiveSync to my phone, works beautifully.

@Pete-S said in MailCow Command Line Reference: @scottalanmiller said in MailCow Command Line Reference: @Dashrender said in MailCow Command Line Reference: @Pete-S said in MailCow Command Line Reference: If you don't intend to use the webinterface then what purpose does mailcow have? You could just install dovecot, postfix etc for email and sogo for calendar and have the same thing without the middle man. I bet you have to tweak config files even with mailcow. I'm assuming Scott is asking about management stuff - he wants to script that stuff, not GUI manage it. Right. GUI is fine for low capacity sites. But we are looking at two use cases both in the 10K+ range. But mailcow doesn't add any functionality that the original packages don't already have. It's just a wrapper. Is it not? Mostly. But it is handling the testing and integration of the components, which is the hard bit. It's actually doing a fair amount of work. I've built an extremely similar system in the past and the effort was quite large for just the "wrapper" bits that they are doing And the central API is a huge deal.

@wrx7m said in Exchange 2016 - NDR: @scottalanmiller said in Exchange 2016 - NDR: @Natchos said in Exchange 2016 - NDR: @JasGot Awesome, thanks for the input. I'll look into SPF. SPF is considered a requirement these days. And DKIM is heavily recommended. People are starting to come around. I have been using DKIM for a few years for all services sending email outside our org. With O365, SPF and DKIM are part of the setup. Same with Zoho.

@sully93 said in Simple Password Compromise on MailGun: @scottalanmiller, which service did you go with after dropping MailGun? We are looking at a relay service and have MailGun on our list. This is a bit concerning that they shut you down like that. We're also looking at Postmark and SendGrid. We made the call to just move to Zoho and get email hosted. We've been super happy with Zoho.

@Kelly said in This doesn't sound right - 3rd-Party "Deduction Management Firm": It hasn't gone into effect, but as of 1/1/20 you will be operating under this law: https://leginfo.legislature.ca.gov/faces/billTextClient.xhtml?bill_id=201720180AB375. Thanks. At this point, it is only companies that this request would apply to.

@pattonb said in DNS PTR Record with 2 FQDN Entries with SPAM Check: @JaredBusch incorrect, Scott has summarized succinctly That is what you asked. But going with that is not what you actually wanted, then the answer to your original post is that you don't fix anything. You whitelist the domain in question and move on. The sender's ISP is in charge of setting the PTR record and there is not a damned thing you can do about it.

@flaxking said in Outlook SMTP Non-Compliant Sender Address: Hmm, I just got the same when testing using telnet 550 5.7.1 Non-Compliant sender address. Code : -4 Oh, good info! Thanks.

@wrx7m said in Sales Person Wants Me to Provide Independent Rep With an Email Account: @scottalanmiller said in Sales Person Wants Me to Provide Independent Rep With an Email Account: My second thought is, if having an email account creates a security concern, it is not creating the account that creates the problem, it simply exposes an existing security problem. Not necessarily security, but accessing features like SFB, OD and Teams. But, as Kelly mentioned, they have Exchange Online P1, which doesn't have any of the other services (different than E1.) Right, i was assuming that they'd only get email. Even those other things, though, still have security. but no reason to think that you'd provision those, too.

@scottalanmiller said in Get Active User Login Count from Dovecot: cat /var/log/maillog | grep pop3-login:\ Login | sed -e 's/.Login: user=<(.)>, method=.*/\1/g' | sort | uniq | wc -l This tiny variation will get you all logins from all logs that you have stored. cat /var/log/maillog* | grep pop3-login:\ Login | sed -e 's/.*Login: user=<\(.*\)>, method=.*/\1/g' | sort | uniq | wc -l

can we get some tags added to this? o365 scan2email receiveconnector

I know SFB accesses the ost file.

@wrx7m said in Office 365 User Quarantine - How Do You Access After Redesign?: @dbeato said in Office 365 User Quarantine - How Do You Access After Redesign?: @wrx7m I have not found a way to do so, you can create a folder in Outlook to manage it from there. Example here http://www.expta.com/2015/02/how-to-add-access-to-office-365-eop.html Have you done this? The link that includes admin seems like it would try to access the admin portion, not the specific user's quarantine. If this works as I need, I wonder if there is a policy to set this up, or if it would be a manual, one-by-one endeavor. I have not but I can test.

@Dashrender said in MailCow in Production Datacenter: Question for Scott - the customer wanted self hosted email? why? It's a commercial mail hosting business. Among other things.

@JaredBusch said in Email server options: @Dashrender said in Email server options: This comparison misses taking it beyond year 5. Why take it beyond 5 years? Because if it is on premises, it will need to be upgraded again. @Dashrender said in Email server options: If you add SA to the original licenses - because you know the plan is the keep using Exchange going forward - it will raise the costs noticeably in the beginning, but come renewal time it will make it significantly less. Less enough to be under O365? not likely, hell, even the 5 year plan would be more expensive for onprem vs O365... but it might lower itself over time because of the SA difference. SA is a scam to get more money. Always has been for the SMB. With negotiated pricing for Enterprise, it is the right thing. If you're a company that only upgrades once every 10 years - then yeah... SA is a waste of money, but you're already talking about upgrading again in 5 years, so SA could very much make financial sense - show me the numbers before you poo poo it.