Emailserver for

I just noticed the the email server sending the beta invites does not have a PTR record and so was rejected by my mail server. Seeing that checking for PTR records is quite common this should probably be fixed. Also it does not use STARTTLS which it should.

Out: 220 ESMTP Postfix
Out: 250-SIZE 104857600
Out: 250-VRFY
Out: 250-ETRN
Out: 250-8BITMIME
Out: 250 DSN
In: MAIL SIZE=11266
Out: 250 2.1.0 Ok
In: RCPT ORCPT=rfc822;
Out: 450 4.7.1 Client host rejected: cannot find your hostname,
Out: 554 5.5.1 Error: no valid recipients
Out: 250 2.0.0 Ok
Out: 221 2.0.0 Bye


Hm would be interesting how many beta invite mail have been blocked.

PTR record may even be a requirement to be RFC compliant. At least I thought it was. Though I could be wrong.

Ugh. TLS is turned on now, but getting the PTR record is going to take some time from upstream. I suppose getting DKIM and SPF right isn’t so useful if some mailservers reject based on a missing PTR record.

Received: from ([])
    by with ESMTPS id sn6si2173922oeb.63.2015.
    for <my-email-address>
    (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
    Thu, 29 Oct 2015 13:41:27 -0700 (PDT)

I can only apologize; the ops team shouldn’t have trusted me to provide the configuration for the email server.


I could help fix this…

I think you need more than a PTR because is pointing to Google.

cp@earth:~$ host has address has IPv6 address 2001:418:141b:19b::2a1f has IPv6 address 2001:418:141b:197::2a1f mail is handled by 10 mail is handled by 1 mail is handled by 5 mail is handled by 5 mail is handled by 10
You have new mail in /var/mail/cp
cp@earth:~$ host is an alias for has address has IPv6 address 2607:f8b0:400d:c06::79
cp@earth:~$ host
Host not found: 2(SERVFAIL)

My advise is add a hostname, a PTR, and reconfigure the mail server for the new name. I also like to have the forward and reverse DNS resolution match. It might not be a bad idea to add DKIM and SPF while you are at it since you need to contact for your DNS changes (if you aren’t running your own hidden master)… I like to run a hidden master DNS server.

1 Like

I’m told we’re sending the next batch from, but the PTR reverse records will take time.

DKIM and SPF are already being applied (that, I did!). At least, I see them on test emails and Google marks them as passing.

Received: from ([])
    by with ESMTPS id e202si2230336oic.128.2015.
    for <my-email-address>
    (version=TLSv1.2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128);
    Thu, 29 Oct 2015 14:08:59 -0700 (PDT)

PTR records are now set for the mail servers; they’re propagating out currently.


I suggest to also add a “Date:” header to your mails. At least our invitation from 2015/10/28 didn’t have one.
(SpamAssassin by default gives 1.4 points for missing Date header)


Got it. The next batch will have it. Thanks!


well but that would be a problem for those with shared hosting...

or those who dont have full control over their IP records (home-hosting)

1 Like

Only if they are trying to run an SMTP server on such a service.

yeah I know and if you for example have a domain and a raspi, why pay for a hosted server?

Because of dynamic DNS, hardware, network connectivity, … :wink:

well dyndns isnt really a problem, there are enough providers for that one. well the raspi 1b isnt the best one but when I get like 5 mails a week there should be no problem regarding that one, and well connectivity, that is a point…

If you want to host a mail server, don’t use a dynamic IP. I’ll be not accepted by most mail servers.

1 Like

If you’re going to run an smtp server learn the requirements and meet them. Otherwise you’re just asking for rejected mail.

but what’s wrong with using a dynamic IP, why is that a requirement?

it’s the same junk that it’s forbidden for normal ppl to get an EV and the same being required for .onion drives that one even further

Dynamic or static IP address itself doesn’t directly matter. It’s that services utilizing dynamic ip addresses don’t typical meet other requirements. So once again if you’re going to operate an SMTP server learn the requirements or expect to experience rejected mail.

well at least an SPF is already in place.

Which is nice. And I require it for my personal mail system. But SPF is not an official requirement though I advocate it. A correct PTR record is an RFC requirement though I believe. Good luck getting that with a dynamic ip service. Many, maybe even most SMTP servers will reject mail if there is not a proper PTR DNS record.