Even after the time of closing the poll is passed, the ui shows the poll as still ongoing and hence no notification is sent and we can't add an outcome. This causes people to miss meeting, for example.
This seems to be fixed with recent updates of loomio.
I think that tool just has one algorithm - fetch the MX record, check that IP address. It cannot figure out the fact that the mail is being sent through another server.
https://dnschecker.org/ip-blacklist-checker.php?query=notifications%40codema.in suggests checking this ip address and that shows the rDNS missing. Safer to add? or not worth the trouble?
Ideally only the outgoing mailserver's rDNS should be checked. Because, otherwise services like Amazon's SES will have trouble with various people having domains without rDNS.
I guess this should be done from hetzner console.
https://matrix.spfbl.net/135.181.250.25 so I think we need to setup rDNS for this domain as well.
also do we need rDNS for codema.in as well or rDNS for mail.free.gen.in is sufficient?
Should we also set a dmarc record?
Codema is supposed to receive mails too I guess, you can reply to notifications.
Yeah, sending is unlikely to be difficult. Receiving might be complicated by transport maps, etc. Anyhow, it doesn't look like codema.in receives any mail.
Btw do we need this long TTL?
$ dig -t txt codema.in @dns5.coolwrks.com
; <<>> DiG 9.18.19-1~deb12u1-Debian <<>> -t txt codema.in @dns5.coolwrks.com
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 37847
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; WARNING: recursion requested but not available
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 1232
;; QUESTION SECTION:
;codema.in. IN TXT
;; ANSWER SECTION:
codema.in. 28800 IN TXT "v=spf1 a mx a:mail.free.gen.in ip4:185.145.203.133 include:_netblocks1.mailhostbox.com include:_netblocks2.mailhostbox.com include:_netblocks3.mailhostbox.com ?all"
;; Query time: 336 msec
;; SERVER: 162.251.82.250#53(dns5.coolwrks.com) (UDP)
;; WHEN: Sun Nov 26 16:58:23 IST 2023
;; MSG SIZE rcvd: 214
I think 300 (5 hours) is fine.
I don't think there is any complication, for example I can send mails for camp@fsci.in directly from the server with sendmail command. We just have to add codema.in as an allowed domain in mailman.
I have no problem in keeping the codema notifications going via mine because it doesn't take up any storage. And I'm already involved in codema maintenance.
Additionally, setting up postfix or something on lists when it already runs mailman might be complicated. So, till we anyhow need a mailserver, we can continue with the status quo.
thanks, then I will also switch back to soft fail for my personal domain as well.
I do have access to domain panel
I think softfail might be okay: https://www.mailhardener.com/blog/why-mailhardener-recommends-spf-softfail-over-fail
I've removed the extra MX records and kept only a, mx and mail.free.gen.in in the SPF record.
I don't have access to the domain panel to remove the unused mx records and spf addresses, so either someone should give me the access or someone with access should remove it.
pravi@ilvala2:~$ dig -t mx codema.in
; <<>> DiG 9.18.19-1~deb12u1-Debian <<>> -t mx codema.in
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 25868
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;codema.in. IN MX
;; ANSWER SECTION:
codema.in. 38400 IN MX 100 us2.mx3.mailhostbox.com.
codema.in. 7200 IN MX 10 codema.in.
codema.in. 38400 IN MX 100 us2.mx2.mailhostbox.com.
codema.in. 38400 IN MX 100 us2.mx1.mailhostbox.com.
;; Query time: 800 msec
;; SERVER: 127.0.0.53#53(127.0.0.53) (UDP)
;; WHEN: Sun Nov 26 16:14:37 IST 2023
;; MSG SIZE rcvd: 141
pravi@ilvala2:~$ dig -t txt codema.in
; <<>> DiG 9.18.19-1~deb12u1-Debian <<>> -t txt codema.in
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 52790
;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;codema.in. IN TXT
;; ANSWER SECTION:
codema.in. 21600 IN TXT "v=spf1 a mx a:mail.free.gen.in ip4:185.145.203.133 include:_netblocks1.mailhostbox.com include:_netblocks2.mailhostbox.com include:_netblocks3.mailhostbox.com ?all"
;; Query time: 364 msec
;; SERVER: 127.0.0.53#53(127.0.0.53) (UDP)
;; WHEN: Sun Nov 26 16:16:34 IST 2023
;; MSG SIZE rcvd: 214
May be the old entries in SPF record is pulling in unnecessary blacklists?
also remove those from spf records and make it strict? "?all" to "-all"?