Results 1 to 9 of 9
  1. #1
    Join Date
    Oct 2004
    Posts
    76

    PTR DNS Reverse (

    So, i been sitting here trying to figure out why im not receiving any CSF alert to my comcast.net email address. So, i just checked my logs and found the problem. But from what i read.. there is no easy way to get a PTR record. So, wtf do i do now?
    [email protected] <[email protected]> F=<[email protected]> R=lookuphost T=remote_smtp: SMTP error from remote mail server after initial connection: host mx2a.comcast.net [76.96.30.116]: 554 IMTA12.emeryville.ca.mail.comcast.net comcast 6x.xxx.xxx.xxx(serverip) Comcast requires that all mail servers must have a PTR record with a valid Reverse DNS entry. Currently your mail server does not fill that requirement. For more information, refer to: http://help.comcast.net/content/faq/PTR
    GottaDeal.com - Hot Deals & Coupon Codes. Why Pay Retail?http://www.gottadeal.com/images/bann...eal-234x60.gif

  2. #2
    Join Date
    Apr 2004
    Location
    Singapore
    Posts
    1,506
    Ask your provider to set the Rev DNS. It is very easy for them to get it done.
    tanfwc
    Singapore Managed Colocation
    Singapore BGP Announcement

  3. #3
    Join Date
    Oct 2004
    Posts
    76
    1 more question as i dont wanna create a new thread.

    When i change my SSH port from 22 to something else. Do i close the old 22 ports or leave them open? Is there anything else running on 22 by default? My port 22 is getting a good amount of hits showing from my iptable logs
    Last edited by Twista; 10-18-2009 at 06:46 AM.
    GottaDeal.com - Hot Deals & Coupon Codes. Why Pay Retail?http://www.gottadeal.com/images/bann...eal-234x60.gif

  4. #4
    Join Date
    Oct 2004
    Posts
    76
    2 more questions (cant edit my post) as i dont wanna create a new thread.

    When i change my SSH port from 22 to something else. Do i close the old 22 ports or leave them open? Is there anything else running on 22 by default? My port 22 is getting a good amount of hits showing from my iptable logs



    When someone says a machine is vulnerable 95% of the time because of outdated stuff/exploits with like php or mysql. (not talking about scripts such as vbulltin/invision forums)

    Does running "yum update" from SSH solve those problems most of the time?

    Sorry, im a linux nub.
    GottaDeal.com - Hot Deals & Coupon Codes. Why Pay Retail?http://www.gottadeal.com/images/bann...eal-234x60.gif

  5. #5
    Join Date
    Nov 2007
    Location
    Northallerton
    Posts
    249
    Well, if you are not using port 22 you may aswell close it.

    yum update will just ensure the software installed by yum correctly, it won't update things not installed by yum iirc, it will not protect insecure configs or anything infact it will just give you the latest version ( which could potentially make things worse. )

  6. #6
    Join Date
    Jan 2008
    Location
    United Kingdom
    Posts
    414
    Quote Originally Posted by Twista View Post
    When i change my SSH port from 22 to something else. Do i close the old 22 ports or leave them open? Is there anything else running on 22 by default? My port 22 is getting a good amount of hits showing from my iptable logs
    Yes, no need to leave the port open if not in use. Make sure you open the new port in your firewall before changing it in sshd_config so that you don't get blocked out.


    When someone says a machine is vulnerable 95% of the time because of outdated stuff/exploits with like php or mysql. (not talking about scripts such as vbulltin/invision forums)

    Does running "yum update" from SSH solve those problems most of the time?
    When you run yum update, It will update services/scripts that were installed by yum providing there is an updated version in the repo.
    If you installed Apache/php/mysql from source, then it wont update them. You would need to compile them yourself.

    If your server is compromised then yum update wont help, as the root kit/c99 will already be in place and you would need to manually clean it up/ reload, Updating services/scripts to the latest version won't make your server secure if you've already been compromised.

    -Sam

  7. #7
    Join Date
    Oct 2004
    Posts
    76
    thanks for the replies
    GottaDeal.com - Hot Deals & Coupon Codes. Why Pay Retail?http://www.gottadeal.com/images/bann...eal-234x60.gif

  8. #8
    Join Date
    Oct 2004
    Posts
    76
    Ok, now i have a new problem. I set the PTR up and everything is working correctly. My domain has never been flagged for spam, so is it because the DNS my provider just setup?

    NOW im getting this error:
    This error results when mail delivery is attempted from addresses that are listed on the SenderScore blocklist and Cloudmark CSI.
    Your mail could not be delivered because your mail provider is listed on both Cloudmark Sender Intelligence (CSI), as well as the SenderScore Blocklist. Both are lists of mail providers who have been detected as sending. Comcast uses these lists to protect its subscribers from receiving spam.

    How do I get my email through?

    It is important that your email provider is aware of their outbound spam problem to avoid being blocked by Comcast in the future. When contacting your email provider, you should include the error message contained in the email that alerted you to this problem. This error message contains important information to help your email provider resolve the issue. To address this issue, either you or your mail provider can visit the CSI website by clicking here and the SenderScore website by clicking here, in order to have this block removed.
    http://customer.comcast.com/Pages/FA...seoid=BL000110


    2009-10-19 05:27:35 1MzpSg-0004pU-JF ** [email protected] <[email protected]> F=<> R=lookuphost T=remote_smtp: SMTP error from remote mail server after initial connection: host mx2b.comcast.net [76.96.30.116]: 554 IMTA21.emeryville.ca.mail.comcast.net comcast 6xxxxxx0 found on one or more DNSBLs, see http://help.comcast.net/content/faq/BL000010
    2009-10-19 05:27:35 1MzpSg-0004pU-JF Frozen (delivery error message)
    Last edited by Twista; 10-19-2009 at 06:38 AM.
    GottaDeal.com - Hot Deals & Coupon Codes. Why Pay Retail?http://www.gottadeal.com/images/bann...eal-234x60.gif

  9. #9
    Join Date
    Apr 2002
    Location
    Auckland - New Zealand
    Posts
    1,572
    Follow the instructions and link at http://customer.comcast.com/Pages/FA...seoid=BL000010 everything you need is there.

Similar Threads

  1. Replies: 6
    Last Post: 03-15-2006, 09:33 PM
  2. Reverse DNS
    By cfaice in forum Hosting Security and Technology
    Replies: 3
    Last Post: 08-06-2004, 08:28 AM
  3. reverse dns
    By SkyServis in forum Hosting Security and Technology
    Replies: 7
    Last Post: 08-03-2004, 06:24 AM
  4. reverse DNS
    By SkyServis in forum Domain Names
    Replies: 1
    Last Post: 08-02-2004, 09:21 AM
  5. reverse DNS?
    By rlynch in forum Hosting Security and Technology
    Replies: 11
    Last Post: 04-08-2003, 06:12 PM

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •