Gmail spam

[FilipK-CZ]

Classification

• [X] Deliverability issue

Reproducibility

• [X] Always

Docker information

Containers: 23
 Running: 21
 Paused: 0
 Stopped: 2
Images: 32
Server Version: 18.09.5
Storage Driver: overlay2
 Backing Filesystem: extfs
 Supports d_type: true
 Native Overlay Diff: true
Logging Driver: json-file
Cgroup Driver: cgroupfs
Plugins:
 Volume: local
 Network: bridge host macvlan null overlay
 Log: awslogs fluentd gcplogs gelf journald json-file local logentries splunk syslog
Swarm: inactive
Runtimes: runc
Default Runtime: runc
Init Binary: docker-init
containerd version: bb71b10fd8f58240ca47fbb579b9d1028eea7c84
runc version: 2b18fe1d885ee5083ef9f0838fee39b62d653e30
init version: fec3683
Security Options:
 apparmor
 seccomp
  Profile: default
Kernel Version: 4.19.0-0.bpo.4-amd64
Operating System: Debian GNU/Linux 9 (stretch)
OSType: linux
Architecture: x86_64
CPUs: 8
Total Memory: 15.65GiB
Name: s1
ID: 7KA3:HTXY:NVVS:4EQ5:GISV:7V5I:Q3T6:C6HO:GLMR:MU5N:6L7Q:QYDG
Docker Root Dir: /srv/dev-disk-by-label-MainPool/Docker
Debug Mode (client): false
Debug Mode (server): false
Registry: https://index.docker.io/v1/
Labels:
Experimental: false
Insecure Registries:
 127.0.0.0/8
Live Restore Enabled: false
Product License: Community Engine

hardware/mailserver   1.1-stable          sha256:875e086722213d92dce9278eb7b28535f18a29a0a3d82bb39405274177811cf9   5912a9f37445        6 weeks ago         380MB

Description

Just DKIM error (DKIM Signature Body Hash Verified) and I don't know how to fix it.

Delivered-To: mailOnGmail@gmail.com
Received: by 2002:a0c:9649:0:0:0:0:0 with SMTP id 9csp6870326qvy;
        Mon, 27 May 2019 10:14:28 -0700 (PDT)
X-Google-Smtp-Source: APXvYqxiTtabN9d6iXII3m3wH0VK1G5KfzzcxLzKNPzLPeHkhdUFUHy601YCqN2kPPyOUUuJouEQ
X-Received: by 2002:a1c:1bc5:: with SMTP id b188mr70366wmb.174.1558977268030;
        Mon, 27 May 2019 10:14:28 -0700 (PDT)
ARC-Seal: i=2; a=rsa-sha256; t=1558977268; cv=pass;
        d=google.com; s=arc-20160816;
        b=gMYU31rgBeoAtLo0KonE9sVuQmo84D7a1hu1dHTHhLUnbgB5BcvItE1VRJzhFu7xyI
         k0J5xOid/84N3gh2kFc5z2vtX3QfkLzyOKNg0ua8Y8IO5pdViSweGPPcTYFXKjlAuofW
         cUgODPwPEVc2zUyGf1NxYNExtThrg5NsJCg3p/8FvjDolSkZ5QYkhKGv9TjunNnoPZC/
         MBGBoibF2Fbw5AfNpPKOaLQf+XOmoK5rZM4yvGkLadZ87vXh0wfCn7ykxsxx4XKdW3SK
         LRLIeNab3idi337JAocF98DDk77pyJ4z/OPTS94qSh5g75LCFqkDA0u9u7LXvZnXyf3i
         PIZw==
ARC-Message-Signature: i=2; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=arc-20160816;
        h=content-language:content-transfer-encoding:mime-version:date
         :message-id:subject:from:to:dkim-signature;
        bh=/CObrfZoRCFogseHXpg4Gk5LEONrEGPjO0w1ydMAP+A=;
        b=PfSxRC555JPHjvhl87gqCj4QJZvLJtIXqNZMdcGJ0zkeuePoUsV4A4IVcgMMm5hDwx
         uCqKYIdHjJAuMWJtmKaCO9LDfj862qKrcj+wPAGbR1bEx0LnfWR1H8UrzU/wCtTwDbBp
         lcnONUT2uIyrA9WfEoVejwsKzxNSHZwXYhrcNVEUofUomFnSul39KmADgWlwMBkAdln6
         jY42Rdc5l2sKmbNkNNS2bkJqpBUIQ7Zh5n5SmYIEtsGP1kGI/21ueXHk9eDUxPUUuS/u
         lV0rS6kF/nI4bzjidAFnNCchHqxheZBlMMp8m+TAPY6cmy8ewuHruVi0xrX3OoWE5E1B
         BuvA==
ARC-Authentication-Results: i=2; mx.google.com;
       dkim=pass header.i=@xxxx.cz header.s=mail header.b=Sxkqvdkf;
       arc=pass (i=1);
       spf=pass (google.com: domain of admin@xxxx.cz designates xx.xx.xx.xx as permitted sender) smtp.mailfrom=admin@xxxx.cz;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=xxxx.cz
Return-Path: <admin@xxxx.cz>
Received: from mail.xxxx.cz ([xx.xx.xx.xx])
        by mx.google.com with ESMTPS id i5si9434923wrs.426.2019.05.27.10.14.27
        for <mailOnGmail@gmail.com>
        (version=TLS1_2 cipher=ECDHE-RSA-CHACHA20-POLY1305 bits=256/256);
        Mon, 27 May 2019 10:14:27 -0700 (PDT)
Received-SPF: pass (google.com: domain of admin@xxxx.cz designates xx.xx.xx.xx as permitted sender) client-ip=xx.xx.xx.xx;
Authentication-Results: mx.google.com;
       dkim=pass header.i=@xxxx.cz header.s=mail header.b=Sxkqvdkf;
       arc=pass (i=1);
       spf=pass (google.com: domain of admin@xxxx.cz designates xx.xx.xx.xx as permitted sender) smtp.mailfrom=admin@xxxx.cz;
       dmarc=pass (p=REJECT sp=REJECT dis=NONE) header.from=xxxx.cz
Received: from authenticated-user (mail.xxxx.cz [127.0.0.1]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by mail.xxxx.cz (Postfix) with ESMTPSA id EC28F24600BA for <mailOnGmail@gmail.com>; Mon, 27 May 2019 17:14:25 +0000 (UTC)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=xxxx.cz; s=mail; t=1558977266; h=from:from:sender:reply-to:subject:subject:date:date:
     message-id:message-id:to:to:cc:mime-version:mime-version:
     content-type:content-type:
     content-transfer-encoding:content-transfer-encoding:in-reply-to:
     references; bh=/CObrfZoRCFogseHXpg4Gk5LEONrEGPjO0w1ydMAP+A=; b=Sxkqvdkf/X2TXarz+7nFgmsJQ9TlUq+HixR2u/Zg3PYnK4XCr1FRAlwyl+EckcEsV4KtyE xl3ztsLY+SR+4t5zsLyQi8L52gN8BQVV9poYLEhj9dUsdHLhVcBbDQIGQdLpNqMRvPJ5DL skIb7A0yPfM1EJ/KpSyKXFcAShjMzr+durjcPoG37Cru1NEgaPCLZu9qywyohQ7QFcX2f6 xreOZRwCQ1itfrIux6GKAwCPR4fUu1fyX9fhRWEajgD+N0VzTe5TMefxGrxqd4GO4LyFeJ 9UrC4o6s+Sc1YgZ4grh9TXPA1PoxZJFrTw5DWZb3l4bupv9Km9WP9Gvc1co40BvjAs//kh GfM3MqT6EZOsybO1IeZ482CJuXw5fb0zK7lh2106ZugpT6h4rHjTmUbAWqalpssG6VQRxf 9Vryf3tR+PWpwJdYRIgsjqCrghg/OqmW0QWObh49P6YViXxyQFBHwnu01aPjeWvbKPTYYd psl2LnkcuSPMRJ2uNHmEdpx35bYsZmTD9qUDDKazc+lBQlOkgZBOOx+tb9Kw2LgC9pJx54 I+n8OwSEjtdAkK39aVL0mW7UQ9Snwdh3C+y4h7vzv3d/lZlsbCyhK41oDbdpxODo/ZYKmC J/dVsIIFrcNMWsWt7woWzwBzPS5awmRPr3aQY6cBDEuxpsRszwSyg=
To: mailOnGmail@gmail.com
From: Admin <admin@xxxx.cz>
Subject: Test 2222 email serveru
Message-ID: <83e7bbf0-ad5d-6572-fc77-24e126dfc7fb@xxxx.cz>
Date: Mon, 27 May 2019 19:14:23 +0200
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-2; format=flowed
Content-Transfer-Encoding: 8bit
Content-Language: cs
ARC-Message-Signature: i=1; a=rsa-sha256; c=relaxed/relaxed; d=xxxx.cz; s=mail; t=1558977266; h=from:from:sender:reply-to:subject:subject:date:date:
     message-id:message-id:to:to:cc:mime-version:mime-version:
     content-type:content-type:
     content-transfer-encoding:content-transfer-encoding:in-reply-to:
     references; bh=/CObrfZoRCFogseHXpg4Gk5LEONrEGPjO0w1ydMAP+A=; b=b8fzPo1HFeCKenczrVYwHPMHBXkjMBmnq0YWPCZaIdH01qFnQgKOcBt1Gw52MnMGwNuH6Z s8RqknC3TmD7HIIN71TXVcbjJjd1gJezYD8bn3jmi7aw6jq/IGBlCFpYyXT7SR61vvcZ99 anPqoK2zt/oH4vCTgqqZo6TJwxhA4BWJZAVA5uBhLwyn0wHCbSuGNBtBW+OoqxUkDUTDPS TCziMWzkA8qM3m//6IId4dPV2D4RBYJpOdYAJI5nI5LtHdFPHw3Z0leVr7gG1VOWPbGyLG Xmtwjf+Gvfbo3R4z6OW1jO+Q32m2LIexNjjvEAURjP6GcWNiiyG8pycbCUJwtV7Uyp9Rnz 3WaBmQqDxYt/ZHQxyaKkiNPjAOeVvCX74IFJ3Ub5nbwnpxNO8tfxJCpABVH4xXbOM4RLMm /JJVf8pHeAP7F0/EBmy3pF3WED/M82aFXqtal3q0zu5DgoOMCSwrEt4hJY1sKXK5XSN4OQ AXn8cKv5ndT2VXMssQ1aj/GXvU/agMTTnuSMz+CuXgCTA7NpiGRVMNYG9aEJnhXcRCVDaG fPwlgBQlSJridwMQMbA91EkFpSbBYWVufqQfOuUUfdUPD8thmsBeYkPD2twv3yBLnTRTMg 9qq/QqJF5LcagKA/VA7nhiErZQhpNHggyUySBnXMTJay8ufUxkyL0=
ARC-Seal: i=1; s=mail; d=xxxx.cz; t=1558977266; a=rsa-sha256; cv=none; b=KLE6zx/9OoWJbCqv1VkC1G5fUebzqWiWkLMvwN+pxdd7ATGO8RZgBx7nrngfSeTV7ZzNH+ wt4Q3PP9Q+xEUUxD5+mJh9Uezg+qVu4dDDCMmxLOAeLbjjCO9j5/FZpJYmRTqF0smL7kz9 kmhcWDUAawZX2O5XODsEB6cPfAELUNZWYHnFx//HyIcPeAK5CUco8wy2IaS9EfC1JaHxpd j98gOA8xgfiBf2v3bEfaDgS26VCfZAkXgHlc+y0/X+iER5fKmojRwabnn+zjwnvD2d/c02 lTclSAbWHp2aKtjdYWYBacCzY0qqn9iMqfXUiyDY8Qw4xwtNmvHxZBoUFVdk/18ehZi24H Lp8Af64zbKM2Tr4Idq/DGlwdKETDN66KSGb7Nvne4L23dPhEB0RvEos3Fug53oT93dc/0w QSArpS4vD65Ac3eP1QJ4fnfC8JH0+FL/hQHt566+MAbJulNWjCYllALADf1SRmmslmLwkU PtNdnLc5NgXh4x0XzQ7pRQrLEJsoTiFaBtDnces3/XkgUrHidUK/ikLZO4A2l2losefuw2 DhXj4BPM5MZOjpRNEc24VViFx87359NeDwJrvObZkee/a6NcFCavwuYLtciDNFyjR7ccvl 5DfFIIip20JRXCdnnm7lyfTVIQkVSIWShxUeueJSZUcODGjMRMBdo=
ARC-Authentication-Results: i=1; mail.xxxx.cz; auth=pass smtp.auth=admin@xxxx.cz smtp.mailfrom=admin@xxxx.cz

Projde tento email do doru�en�ch?

Test

Admin

Steps to reproduce

1.Send email to gmail

[sknight80]

Hm, I did not see this issue before. Are you sure you set up your domain correctly with the generated DKIM string?

[FilipK-CZ]

Generated:

mail._domainkey IN TXT ( "v=DKIM1; k=rsa; "
    "p=MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtAmdXiZUhNsFtP/4v9BN/o+/qZZLWpDPrbUT6deOVMoIwP4l/1Foh3erEVhFgr4yAMr57I4gi3XyLcGIbfmMoek+SwoQhxp2HOpIMe16RV/lv8USLU408LE1JIx8ZGv498aaI1Wdt4DAmZu+o86Ch+U+MiUIlNKmzkIHbyNS8nW4jfG+lt/bt8EyrH+CsBUYi9eLdQoC8UuXWHTeC"
    "UZgoJGbg4bqNiil9ir6dzo701q1QqWd5zr99UzYfPm/L7o/IQrmEVzDlcvWMa48sjF6ZBJvdBc+/5MMJiWSSe+oVDT6zsCafdrVGFRTVSuoTmQpdQzaa6dzR/h/WasuYIq8g44PXk4YB/NsjmeDxgoUtQaP9n/YoPtAN0wVSmovOW86eZrSR3OYackXl+03u4t4olSrEXSV/m+BNORo4NOBK7jxyOsj+3VwIEeG8jLGJ3suknrmGsyHsFvE2CUA"
    "zBo6iqaKVduGyecVP1dPDlyJfcMUhC6EoFsJqddFQNe39rcriesIKD7mCDFmESz0AExs0QDp9gma/NZ1LDm0pNAYsA4xnUcWzO3whQ3d6M3qo8lE9suNoAwv10L8kQJqJljto/+0FsIf3XMaWK+zY+RT6qrFlnv+OaTWwrr4Skj1+oJrOKS205vJX1pQc9IQgIYtvfTPdX2qDhY3IiEQdN80uMkCAwEAAQ=="
) ; 

TXT in CloudFlare DNS: mail._domainkey

v=DKIM1;k=rsa;p=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

[FilipK-CZ]

I create new mail server (clean, with instruction). Still same error (and still spam) when I analyze google header in MXToolBox

In G Suit header analyzer:

[sknight80]

Hi @FilipK-CZ

I will create a new server over a weekend and I will try this.

[prometheanfire]

any updates?

[sknight80]

Hi,

Sorry, I did not get a chance to try this out due to some other tasks. I will try to do it this week.

[prometheanfire]

how'd it go? :D

[sknight80]

I tried to reproduce the issue, and I wasn't able to do it. :(

[prometheanfire]

that should be a good thing I'd think?

[sknight80]

Yeah, I think so too...

[FilipK-CZ]

I still have this error (and still, my emails end in spam). Also, deleting and recreating the container did not help. Gmail (header) says: SPF: PASS DKIM: PASS DMARC: PASS

I check my IP in 250 blacklist and nothing www.mail-tester.com - 10/10

[navossoc]

Not sure how this can be a problem with the mailserver itself, since technically is everything ok.

Maybe it is your domain, your email content, your ip address... Who really knows how gmail spam filter works?

Did you subscribe yourself on Postmaster tools? It may be useful.

[FilipK-CZ]

Microsoft mail also spam. In header arrived mail is: dkim=fail (body hash did not verify) - Same like Gmail

[FilipK-CZ]

Yes, I verified the domain in Postmaster. Still shows no data No data to display at this time. Please come back later.

[FilipK-CZ]

Not sure how this can be a problem with the mailserver itself, since technically is everything ok.

Maybe it is your domain, your email content, your ip address... Who really knows how gmail spam filter works?

Did you subscribe yourself on Postmaster tools? It may be useful.

I test multiple domains and still same error, I tried 2 IPs, I tried multiple email content

[navossoc]

Both IPs are from the same hosting provider? I have a relay on Vultr 👍, no problems at all.

(You will need to ask them to unblock port 25)

I also have some vps on OVH, but they got blocked on hotmail one time,. It was not my fault, but a "provider issue", Microsoft blocked a whole OVH network range that day.

[FilipK-CZ]

Yes, it's from the same provider, but from a different range. And I have full access to my IP (no block ports)

And block port 25 or blocked IP couldn't make error 'dkim=fail (body hash did not verify)'

[navossoc]

I know that, I was talking about port 25 on Vultr not your provider.

Maybe that is the issue, if your hosting provider is know for spamming, it may have a bad reputation.

What are you using to trigger this emails? a script? a program? webmail? Some scripts adds a few headers, it may being tagged...

[]'s

[FilipK-CZ]

I use Mozilla Thunderbird (or RainLoop)