top | item 46752954

(no title)

0xcb0 | 1 month ago

Telekom is a bunch of strange folks. I lately was not able to send mails, from my private mail servrr to my fathers telekom mail. After investigation I found out my server got blocked. After a decade of working. I mailed them, and they told me to register my mailserver with them. I shall tell them what mails I will send from there and about what content. I couldn’t believe my eyes. Sure, thats how mail was supposed to work. Register with every mail server in the world, before you can send mail.

Their mail excerpt: This system has not sent any e-mail to our customers for a long time. For security reasons our systems will only accept e-mails from such IP addresses after a check of setup and information about these systems.

Please give us details about this system and the company using it, tell us all about the sending domain, what type of e-mail will be sent and especially if you or your customer want to send newsletter give us detailed information on how recipients e-mail addresses had been acquired. Who in person is responsible for e-mail sent from this system (MTA)?

Please be advised that only technically proper configured and very well maintained systems are qualified for a reset of reputation and please see our FAQ section 4.1 (Requirements for smooth access to our e-mail exchanges <https://postmaster.t-online.de/index.en.html#t4.1>):

"There must be a domain and website with direct contact information easily deducible from the delivering IP's hostname (FQDN)."

discuss

Avamander|1 month ago

That policy of theirs has existed for a long time now. It's a really odd one at that.

They also don't enforce DMARC, nor do DKIM. It's stuck nearly four decades in the past.

7bit|1 month ago

That's Germany in a nutshell.

wolvoleo|1 month ago

Microsoft has a similar policy on their consumer domains though. If they have not received mail from you for a month or so you are insta blocked. It's infuriating for personal mail server owners.

vjerancrnjak|1 month ago

I think this is standard. It applies to domains as well. I experienced government services blocks as well -- they send me an email, yet block my reply. I complain every time and rarely does anyone care, the support person does not escalate, so my email remains blocked, sometimes I'm told system is working as configured, completely ignoring that I am a real person and system is hostile towards me.

It's just general fragility of tech and lack of care from the creators/maintainers. These systems are steampunk, fragile contraptions that no one cares to actually make human friendly or are built on crappy foundations.

hirako2000|1 month ago

We call it the email mafia.

To send emails we need to pay for a mail service. Or get ads of course Gmail is part of the ring.

Like most things it start with good intentions, to fight spam. As if it even worked, I guess we would get far more without they will say.

myself248|1 month ago

Is there a government requirement to be reachable by its citizens? That would seem to violate it.

technothrasher|1 month ago

Well, I don't know if that is better or worse than my experience with Comcast. They will usually unblock my emails within a day of my sending an unblock request, no questions asked... and then block me again after a few days, with no explanation as to why. I've had this IP for years, I have spf, dkim, and dmarc all property configured, I'm not on any blocklists, and I only send a very small volume of personal emails from the server.

Asmod4n|1 month ago

but the fun thing about them is, they allow you to impersonate any mail address you want with their smtp server.

Aka, when you are a customer of them you get a @t-online.de address and login data for their smtp server.

You can just login into that server and set the From: Header to anything, they don't check.

AnthonyMouse|1 month ago

Isn't that fairly common? You could then put in some other address, but you could do the same thing by setting up your own mail server, and in the former case you're not even really anonymous because the headers are going to show it was sent through their mail server and their mail server's logs will show which account was used to send the message.

direwolf20|1 month ago

In Germany I'd be surprised if the police didn't come to your house when you did that, and take all your computers to find evidence you sent it, and you're not getting them back even if you're proven innocent.

idiotsecant|1 month ago

Does anyone self host email anymore successfully? I'm honestly asking. I would like to but it seems like a full time job trying to keep it running. Are there halfway solutions where maybe you own the service and domain and it runs somewhere trusted?

seszett|1 month ago

I have been running my mail server for about 20 years now, using three different domains.

I have switched servers regularly, mostly between OVH/online.net/Hetzner since they are the three big cheap European hosts. I have also used various server software, now happily running OpenSMTPd.

I have had a few problems with Microsoft in the past but contacting them (what made me care enough was marrying someone with an @hotmail email address) eventually fixed delivery for good. No notable delivery problems otherwise. I also run my company's mail server, it works fine too (with a much larger volume and different usage patterns), also running out of OVH servers.

What I recommend for people who don't want to do sysadmin is buying a domain at OVH to use the free email service offered with it. It's cheap and works, and it's easy to switch to another registrar or provider if needed.

rsync|1 month ago

I self host email and have done so, with the same domain, since ~2000.

My IP has not changed since 2010 and I have perfect dkim/dmarc/rdns and whatever duct taped bullshit de jure is currently being practiced.

Everything generally works.

hnben|1 month ago

I selfhost for >10 years, but only for receiving, i.e. I can not send anything from my domain, because I thought that would have been to much stress to set up.

My setup: I have a root server with DNS attached to it. On there is a postfix, with a minimal config that forwards all emails to my real address on posteo.eu. And posteo has not given me any trouble with any of my emails at all.

I use this setup, so I can easily give new email-addresses to individual web services, and it gives me the option to selectively block these addresses.

Last year I brought the big abo from proton, which includes throwaway mailadresses, and I am thinking about migrating my mail setup there.

fuzzy2|1 month ago

Sure. Highly successful even, I would say. I can deliver to Microsoft and Google.

Not sure though what the magic ingredient is. I've had the IP address for 7 years before I decided to use it for mail, after one quick mail to Cisco's Talos stuff everything was fine. Software is Mailcow. Hosted at Hetzner in Germany.

And still, I cannot deliver to T-Online, so there's that.

njt|1 month ago

I've been self-hosting my email for a little over 2 decades.

The basic setup has more or less stayed the same, but there's some more extra components around it you have to know now (spam filtering and SPF/DKIM/DMARC come readily to mind).

To quote Michael Lucas: "everything complicated about emails revolves around spam and not getting it". I highly recommend his book, "Run Your Own Mail Server".[1]

In short, hosting your own email is not that bad at all. I strongly suspect, like many other skills, since it has atrophied with the advent of the cloud and people readily giving up to the large carriers, it has gotten the reputation of being hard, or as you said, a full time job. I don't think either of those things are true.

[1] - https://mwl.link/run-your-own-mail-server.html

fuzzy2|1 month ago

At least they respond quickly to such inquiries. I have given up on T-Online Mail. I refuse to follow ridiculous rules like these.

nik736|1 month ago

Well, we have to "register" every new IP or new mail server with them as well. It's annoying and a weird system, but they respond quickly and it's just one todo we have to think about.

Cockbrand|1 month ago

Been there, done that. After a bit of back and forth, Telekom basically recommended that I go and use one of the big SMTP servers and stop bothering them. While I hated myself for doing it, I eventually switched to Gmail for peace of mind.

nerdponx|1 month ago

Does Fastmail have any clout in Europe? I've been a customer for the better part of a decade (with my own domain name) and I've never had a mail delivery issue.

glitchc|1 month ago

Unfortunately some inbound servers will block emails if the originating server does not match the From: address.

bayindirh|1 month ago

This is one of the reasons why I'm not planning to host my own e-mail server. It's not that I can't do it, but I don't want to sink time into investigating and working around/solving things like that.

lwhi|1 month ago

They just want to make sure you're not a spammer.

unknown|1 month ago

[deleted]

phit_|1 month ago

fwiw t-online.de hasn't been owned by Deutsche Telekom since 2015

anal_reactor|1 month ago

> about what content

Ask ChatGPT to generate you a very long very graphic story about how much you'd like to fuck a dog and your father is the only person who understands your desires and you want to discuss this with him via email. While fucking dogs is illegal in Germany, talking about it is (probably) not. Make the guy who asked the question regret doing it.

egeozcan|1 month ago

I'll give you an insider info: There's no guy! Your response would be filtered away by the profanity filter and nobody working in Telekom will ever read any of it.

Hell, I can even say, likely, nobody will ever read it, regardless of how you answer.

Those companies only respond to lawyers.