Comment on Can a reply to an ongoing email conversation land in spam?
dorkian_gray@lemmy.world 11 months ago
To expand on what others have said, once you send the email, one of two things might happen:
1.) The receiving email server might report the email as delivered to the recipient, or
2.) Your email might get “bounced”, where the recipient is not notified of the email and the email is returned to you with a notice stating why the email was not delivered.
The second one is what happens if the email server is “sure” your email is spam. But even if the email is marked as delivered, that doesn’t mean it goes in the inbox. Secondary checks determine which box it goes in, and that box might be “Spam”. This secondary process is entirely internal to the mall provider, where the initial checks before delivery usually rely on a SpamAssassin instance.
Both are influenced by a number of factors, but the biggest are DNS (Domain Name Service) records on your domain which show you’re a legitimate sender. These are:
- SPF: Sender Policy Framework
- DKIM: Domain Keys-Identified Mail
- DMARC: Domain-based Messaging, Authentication, Reporting, and Conformance
A comprehensive explanation and guide can be found here: dmarcly.com/…/how-to-implement-dmarc-dkim-spf-to-…
But the short of it is that if your SPF or DKIM are wrong or missing, your emails are much more likely to be rejected or to land in spam. You won’t lose points (yet) for not having DMARC, but if you have SPF and DKIM set up correctly it gives about 10% better chance of being delivered (but it may not affect whether you get to the inbox, depending on those secondary checks).
You can use mail-tester.com to check for these and other issues that would stop your emails getting to the inbox. Don’t worry about “reverse DNS” not matching, or if it says you don’t have an “unsubscribe header”. RDNS can’t be expected to match anymore and I don’t think it’s a good spam indicator. Unsubscribe headers are only for mailing list emails, so if you’re not testing a marketing email from somewhere like MailChimp then you won’t have an unsubscribe header. Finally, being on SORBS is not the end of the world, and blacklists generally can be ignored unless your email provider is small, or if you run your own server.
Finally, don’t ever think “it’s been working fine so it shouldn’t stop working now”. SPF and DKIM weren’t necessary five-ish years ago, now they’re mandatory; DMARC itself hasn’t been taken very seriously to date but Microsoft just recently announced they’re actually going to start paying attention to it. On top of standards changing, unless you own and run the email server in your dwelling, you don’t have the control necessary to say “nothing has changed”. Microsoft can and does change their system constantly behind the scenes: applying patches, updates, retiring old servers and configuring new ones into the cluster, and so on. What was is not relevant; you can only look at what is, and fix that.
OrangeCorvus@lemmy.world 11 months ago
Wow! Thanks so much for the detailed response. I remember I tried mail-tester some time ago, I tried it now it gave me a 7.9/10
SpamAssassin. Score: -2.1.
-0.1 DKIM_SIGNED
Message has a DKIM or DK signature, not necessarily valid This rule is automatically applied if your email contains a DKIM signature but other positive rules will also be added if your DKIM signature is valid. See immediately below.
0.1 DKIM_VALID
Message has at least one valid DKIM or DK signature Great! Your signature is valid
-0.001 HTML_MESSAGE
HTML included in message No worry, that’s expected if you send HTML emails
-0.1 MIME_HTML_MOSTLY
Multipart message mostly text/html MIME
-1.985 PYZOR_CHECK
Similar message reported on Pyzor (www.pyzor.org) pyzor.readthedocs.io/en/latest/ Please test a real content, test Newsletters will always be flagged by Pyzor Adjust your message or request whitelisting (www.pyzor.org)
0.001 RCVD_IN_MSPIKE_H2
Average reputation (+2) xxxxx listed in wl.mailspike.net
0.001 SPF_HELO_PASS
SPF: HELO matches SPF record
0.001 SPF_PASS SPF
sender matches SPF record Great! Your SPF is valid
This is the other part of the test with yellow checkmarks.
You’re not fully authenticated
[SPF] Your server xx.xxx.xx.xx is authorized to use mail@xxxxx
Your DKIM signature is valid
You do not have a DMARC record You do not have a DMARC record, please add a TXT record to your domain _dmarc.xxxx with the following value: v=DMARC1; p=none
Your reverse DNS does not match with your sending domain.
The rest seems to be green except for the List-Unsubscribe header but I do not send newsletters.
dorkian_gray@lemmy.world 11 months ago
My pleasure! I am somewhat versed so I’m happy to spread the knowledge where I can 😊 Microsoft does typically set up SPF and DKIM automatically for new accounts, but a small handful of my customers with legacy GoDaddy accounts that got switched to Office 365 found that it wasn’t enabled for them, for some reason. Probably a migration issue at GoDaddy.
Looks like it’s working just fine for your tenant though, and the rest of the test looks good. Pyzor would’ve triggered 'cause it was a short or empty test message - like the tester noted, test with real content to avoid that, but for now we can just ignore the ding, so you effectively have a 10/10. Nice 👌
It’s an unfortunate truth that there is no power on earth that can guarantee you stay out of the spam box. But, your domain and email are in good enough shape that you will pretty much always get delivered, even if sometimes that delivery is to Spam. You (or the person you were emailing) with might be able to harangue the receiving email provider into refactoring their sorting though; I’m sure your recipient doesn’t want their important emails going to spam, either!
OrangeCorvus@lemmy.world 11 months ago
Thanks so much! Well after a few days, I think that person lied to me and I don’t think anything landed in his spam. I think it was his way of getting out of something. Anyway should I also go ahead and do a DMARC record or is SPF and DKIM enough?
dorkian_gray@lemmy.world 11 months ago
I’d recommend DMARC, sure - every little bit helps! But only because your SPF and DKIM are already aligned.
If you want me to check your work, shoot me a DM with your domain and I can take a look after you’ve done it with something like mxtoolbox.com (bookmark that one too, it’s good for checking your records after an edit to make sure the edit went live - just give it up to 72 hours). Or, a screenshot of the settings you’ve entered for the record, and I can validate for you (or mark it up to show changed if they’re needed).