Conversation
Notices
-
@xian @Moon @aetios dnswl.org + spf + dkim means youre mostly fine
- Machismo repeated this.
-
@opal @xian @aetios mail is hard, I ran my own mail server for over 15 years in addition to running three commercial mail servers for big companies. you can do everything right and still have unacceptable levels of undelivered mail. the factors are largely out of your control.
I have mentioned this previously but I had a mail server I inherited that had the same ip address since the 1990s and it got a moderate amount of spam and no deliverability problems. I spent a bunch of time and wrote a bunch of new spamassassin rules and my users were super happy.
due to ISP issues we ended up having to change IP ranges. After that, spam got out of control and deliverability dropped. I spent months writing custom spam rules but it just never stopped. In the end we switched to gmail and all problems went away.
I stopped hosting my own mail server because it became impossible to stay unblocked from gmail and outlook. I would get blocked for no reason, request an unblock, wait a month until they unblocked me, then a month later their automated system would block me again.
fuck email, give up, just use the thing that works and move on.
-
@Moon @opal @xian @aetios The solution is to not talk to normalfags that use those large servers to begin with. Considering the amount of supposed privacy schizos on this network, I imagine many people already don't.
-
@xian @Moon @aetios please stop proliferating the lie that mail is hard, it makes other people believe the same, and then big tech ironically wins
-
@Moon @opal @xian @aetios Or maybe you just got unlucky with the IP or something. I've received successful registration from pajeet spammer with gmail address just today.
-
@mint @opal @xian @aetios well, I was a contractor at the time and needed it for work. work email should always be on a big provider or you're just asking to lose communication with people. I lost work because of my insistence on self hosting.
-
@mint @opal @xian @aetios well that's what I mean, if you get your mail delivered or not is more reliant on the ip than anything you can control in the setup.
-
@mint @xian @Moon @aetios this is sadly unacceptable seeing how a lot of businesses end up using gmail for their own shit, and i still get a lot of gmail users i have to send mail or reply to. i wish we could ignore gmail, they are doing *nothing* for the overall email ecosystem. they could fix half of spam by enforcing starttls and, like, supporting DANE themselves, but last i checked they do none of this. they'd rather add AMP javascript for Interactive Marketing E-mail and jerk off over their "secure" oauth2 logins
-
@Moon @aetios @xian (and i want to make either documentation or software to make mail even easier for noobs, but mostly the documentation for postfix/dovecot/opendkim and other components like dns records are "fine")
-
@opal @xian @aetios @Moon I just want openbsd to release an imap server.
-
@opal @aetios @xian Also dovecot setup is annoying but not terrible, UNTIL you want to do something a little unusual like catchall mailboxes or some sieve filtering rules, at which point it becomes a ton of work because it's undocumented except out of date guides online that don't work anymore.
-
@aetios @opal @xian btw don't use OpenSMTPD, it's a trick. they changed their config format a dozen times and despite wanting to be the most well designed, secure email server they had numerous critical vulnerabilities. maybe it works better now, don't care.
if you run your own mail server use postfix and touch as little as possible.
-
@Zerglingman @xian @Moon @aetios nearly every obsd codebase (yes, including tmux and openssh) is overkill garbage, dont get your hopes up
-
@opal @xian @aetios @Moon just werks for me. There was one thing wrong in the manpage that led me on a goose chase, and I couldn't find answers anywhere online because only the most basic stuff had been updated to the latest config format, I ended up just figuring it out by reading the code. 🤷
Everything else was pretty painless.
-
@Zerglingman @xian @Moon @aetios
>just werks for me.
yeah i know cus you arent a dev and therefore you are less likely to keep up with the vulnerabilities/bugs or care about the crap design choices the obsd team makes. pretty much everyone is stuck with openssh at least as a client, because its the only real mature implementation, but the configuration knobs and implentation itself are nearly as bad as gnupg
-
@Zerglingman @Moon @aetios @xian there is exactly one thing i can give obsd proper credit for: the OS installer is completely painless, better than setting up a linux system. but when i actually boot into it and try to use it for anything purposeful, i gave up, plus it ran with a heavy performance cost on my x200 due to all the "mitigations" it has
opal hart
Moon
Machismo
All 076萌SNS content and data are available under the