最近我得到了很多反弹。
我以为我的谷歌应用程序帐户已经被入侵,但我的应用程序帐户没有任何活动,当然也没有恶意用户可以看到。
由于电子邮件总是从一些随机的用户名(例如,[email protected])发送,我试图find一种不允许从未注册的用户发送电子邮件的方式。 我找不到任何东西。
令我担心的是,这封邮件中有一个X-Google-DKIM-Signature,它说“Google试图传递您的信息”。 这是否意味着电子邮件是从我的信任客户端发出的? (我只使用Gmail)
AFAIK垃圾邮件发送者可以自由地欺骗电子邮件的每个领域,但DKIM应该使(现代)服务器放弃这些不可validation的电子邮件。
任何想法泄漏是什么?
这是一个反弹的例子:
Delivery to the following recipient failed permanently: [email protected] Technical details of permanent failure: Google tried to deliver your message, but it was rejected by the server for the recipient domain 174.133.125.2 [174.133.125.2]. The error that the other server returned was: 553 sorry, that domain isn't in my list of allowed rcpthosts; no valid cert for gatewaying (#5.7.1) ----- Original message ----- X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=x-received:x-received:received-spf:mime-version:date:message-id :from:to:subject:content-type:content-transfer-encoding :list-unsubscribe:x-gm-message-state; bh=l2RiLiEDvrHgBMSAjtLmNgIpmW4D1EFAIr3O42oBysM=; b=UBSW90YcP4Fu1vDLnvGCp06XEE5+FOAUR62qSnQrnaPcsKWJSdFT7x7XSU2+vHrpTI RaN4pHJWlaMHqtAUoMFE0T9hgBj0blZnNMDtMRFkcU4QD0E/QNw6VIQlAjWGOWvXghMc G+SX+YLugnQEWS6tG6guf1hF31XoB4a2HxvxQO4J+lWNLg60LaS7K4DiUr4yG25mvXBU uy+tXqjLKyZgA9jmvyVvBKeRYVwMIWvscJ26yw17K7LRfGZkAXzuvTVyGMuLUzthj5c5 MSNZOG6u5faxtzdBkGRiNQVarq3IsXBuXcxk1vRiUktbM8OIhm2D4IrvhmTPrDF4yyTz EHhw== X-Received: by 10.50.37.239 with SMTP id b15mr4892361igk.69.1360854627245; Thu, 14 Feb 2013 07:10:27 -0800 (PST) X-Received: by 10.50.37.239 with SMTP id b15mr4892357igk.69.1360854627177; Thu, 14 Feb 2013 07:10:27 -0800 (PST) Return-Path: <[email protected]> Received: from [117.201.44.87] ([117.201.34.157]) by mx.google.com with ESMTP id vx6si33676538igb.26.2013.02.14.07.10.25; Thu, 14 Feb 2013 07:10:26 -0800 (PST) Received-SPF: neutral (google.com: 117.201.34.157 is neither permitted nor denied by best guess record for domain of [email protected]) client-ip=117.201.34.157; Authentication-Results: mx.google.com; spf=neutral (google.com: 117.201.34.157 is neither permitted nor denied by best guess record for domain of [email protected]) [email protected] MIME-Version: 1.0 Date: Thu, 14 Feb 2013 20:40:29 +0530 Message-ID: <B23FC935D84FBB6D39DD9BDCC44CD2.176.3699432888759@D> From: "Valetine's Day" <[email protected]> To: [email protected] Subject: I will be excited if you are my Valetine Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: 8bit List-Unsubscribe: <mailto:[email protected]> X-Gm-Message-State: ALoCoQkVcAw4pG/8g2x1C02KHf4lLkBdJ4iLe9r1ZeGlGE1AwtZEQm5VsHh9tNmG04yH2ahWqXnIiKu7DrTf7j6bLHEaF0l0AMhrC6ZvnyJTUr4n+9TKMieQPycP0Pw8sCJ8DELiMNlLI/CGbgQ1ObMLghXauZTeqg== ----- End of message ----- 确保您没有为您的Apps帐户启用全部通讯地址,否则您将获得大量随机内容。 http://support.google.com/a/bin/answer.py?hl=en&answer=33962
不要担心X-Google-DKIM-Signature(或其他一般以X-为前缀的标题),这是一个特定的Gmail,它不是一个真正的 DKIM签名为您的域名。 如果您想设置,请查看以下文章: http : //support.google.com/a/bin/answer.py?hl = zh-CN&answer = 174124
拒绝与DKIM无关,但与收件人有关。 但是,为什么Google邮件服务器会尝试传递错误的MX? 对我来说没有意义。 当然,收件人系统可能configuration不正确。 失败的收件人地址是否具有相同的MX?
其他的东西:你是否validation过DKIM签名? 也许这只是一些技术性的文字…