Thursday, February 12, 2009

Comcraptastic goes Cocks

Cocks Internet (Cox) blocks outgoing port 25. I just got an email from Comcast that they're blocking port 25 now too, but only for folks like me who actually use port 25 to go outside of Comcast's network (i.e., to any server other than Comcast's). Which I do because I route all my outgoing email through badtux.net to make sure it gets properly logged and archived. Comcraptastic! Now I gotta go figure out how to make Exim4 on Debian listen on something other than port 25 (I am *not* going to send email via Comcraptastic's SMTP server, I found out the hard way that Comcraptastic's SMTP server drops half the email that it gets into the bit bucket, apparently using some hyper-vigilant algorithm that detects many ordinary emails as "spam" or "viruses").

Oh well, at least now hopefully the other people on my neighborhood segment aren't going to overload our upstream with zombie porn spam anymore. Note that I run a Mac and have my WiFI on my Airport Extreme secured with the most secure encryption, so I know I wasn't the source of any spam (no viruses for Mac, remember?). But I certainly saw a spike in virus traffic last week that was probably zombifyin' machines all over Comcraptastic's network... made things here on the penguin's iceberg pretty goddamned craptacular until Compost got the morons cut off. Looks like their algorithm for "probably a spammer" can't tell the difference between a buncha spam going to lots of servers, and a few emails going to a single server. Morons. But what can you expect from folks who've outsourced everything and thus have only a few dozen people who know anything who keep the whole craptacular piece of shit network they run up and going somehow and thus haven't a second's amount of time to, actually, like, *think* about the craptacular code they wrote in the five seconds between solving one problem that threatens the whole network and solving another problem that threatens the whole network? It's all about how corporate management can squeeze their employees for more profit by replacing competent people who know their shit with idiot contractors who can't find their ass from a hole in the ground, and nothing about customer service, unless your definition of "service" is what a stallion does to a mare.

-- Badtux the ComCrapilated Penguin

Aftermath:
I followed the directions for configuring exim4 at:

http://edin.no-ip.com/content/exim4-courier-ssl-debian-etch-mini-howto

with the exception that I authenticate against SASL rather than against Courier since I don't run Courier, I run Dovecot. So I un-commented the SASL section of the configuration file rather than the Courier section of the configuration file. But that was done years ago (been prohibiting relaying w/o name and password on port 25 for years, have never allowed "bare" relays for obvious spammer control reasons), so all I had to do was configure my keys, set the SSL enable at the top, and change last line of /etc/default/exim4 to say

SMTPLISTENEROPTIONS='-oX 465:25 -oP /var/run/exim4/exim.pid'

and after restarting, voila. Now listening for SSL on port 465, and non-SSL on port 25 (for things destined for that mail server which also hosts my Badtux domains). Tested it, and it works with both Thunderbird and AppleMail (I run a Mac, remember?).

3 comments:

  1. Be glad for what you have . Where I live in the Sierra Foothills we have Only ' Volcano ' for phone and internet . There are no other providers without at least going thru Volcano's phone wires . Really sucky and they also get to set , and raise the prices as needed .
    a slowly transmitted w3ski

    ReplyDelete
  2. The port 25 block happens based on unusual activity. Try changing the outgoing port to 587 with secured authentication.

    Mark Casem
    Comcast Corp.
    National Customer Operations
    We_Can_Help@cable.comcast.com

    ReplyDelete
  3. Thank you, already done, I will post directions on how to configure exim4 on Debian Etch to do SSL on port 465 shortly (*NOT* port 587). I just finished testing this setup and it works fine. Please note that I run my own email server at a data center in Atlanta, the same server that hosts my domains. I do *NOT* use Comcast's email servers, they lose my email, I have 100% proof of that because I've tested Comcast's email servers

    I was just mildly amused by the "unusual activity" bullshit, since I run a Macintosh (which is 100% immune to viruses). The "unusual activity" was apparently me connecting to port 25 on my mail server (which is hosted in a hosting center in Atlanta Georgia -- like I said, I don't use Comcast's mail servers). Bullshit always amuses me, and Comcast's bullshit is always so... comcraptacular.

    - Badtux the Easily Amused Penguin

    ReplyDelete

Ground rules: Comments that consist solely of insults, fact-free talking points, are off-topic, or simply spam the same argument over and over will be deleted. The penguin is the only one allowed to be an ass here. All viewpoints, however, are welcomed, even if I disagree vehemently with you.

WARNING: You are entitled to create your own arguments, but you are NOT entitled to create your own facts. If you spew scientific denialism, or insist that the sky is purple, or otherwise insist that your made-up universe of pink unicorns and cotton candy trees is "real", well -- expect the banhammer.

Note: Only a member of this blog may post a comment.