Email Sending Issues to Major Players


Good Morning,

We have a domain that is having issues sending mail to the major email players such as Yahoo, Gmail, etc. There is no history of spamming from this domain however I suspect that the IP has a history as it is an AWS IP address. The reputation score is 50 as per my research. Does anyone have any tips on how to rectify this situation?

Thank you in advance,

Sailaway

Sending email from an alias using Gmail app

I use G-Suite for business. I have the main domain (Let’s call it example.com) and a number of secondary domains (we’ll use example.co.uk for this). I have set up aliases so that I can receive email sent to joe.user@example.com and also joe.user@example.co.uk.

Using GMail on the web I can select a default email address for outgoing email. So, although my primary address is joe.user@example.com my outgoing email appears to come from joe.user@example.co.uk

So far, so good.

Now I want to do the same thing on my Android phone and tablet.

How can I set up Gmail for Android to use my alias joe.user@example.co.uk instead of my primary address joe.user@example.com?

Note that I don’t want to reset the phone and sign in with a different address. I just want to change the GMail alias.

One answer to this question suggests it’s not possible, but that was five years ago. Has anything changed?

query – How to reproduce SQL Injection problem by sending single quote in MySQL?

This is Damn Vulnerable Web Application (DVWA) and it’s vulnerable to SQL injection (SQLi).

Let’s begin by sending normal request

http://127.0.0.1/dvwa/vulnerabilities/sqli/?id=1&Submit=Submit#

Output via browser

ID: 1
First name: admin
Surname: admin

This is how the request looks like in MySQL

mysql> SELECT first_name, last_name FROM users WHERE user_id = '1';
+------------+-----------+
| first_name | last_name |
+------------+-----------+
| admin      | admin     |
+------------+-----------+
1 row in set (0.00 sec)

mysql> 

Common way to identify SQL injection is by sending single quote ' char in the parameter.

E.g. id='

Give it a try on the url and it works.

http://127.0.0.1/dvwa/vulnerabilities/sqli/?id='&Submit=Submit#

Web browser will display SQL error indicates that the site is vulnerable to SQLi

You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near ''''' at line 1

I didn’t know how the query looks like in MySQL ..

So I’ve tried SELECT first_name, last_name FROM users WHERE user_id = '''; but I didn’t get the same error.

Instead, I was getting '> symbol from MySQL shell.

mysql> SELECT first_name, last_name FROM users WHERE user_id = ''';
    '> 
    '> 
    '> '
    -> 
    -> ;
Empty set (0.00 sec)

mysql> 

What is the right way to query id=' or user_id = ' (single quote) request in MySQL?

Sending a customised Google Maps itinerary – as-is – to Android phone

I’d like to have a customised route available on my phone for turn-by-turn navigation. BY customised I mean an A-to-B-to-C-to… itinerary that has been dragged at various points along the route, starting from the originally computed itinerary. Detour points added by dragging are represented by large white dots:

enter image description here

Unfortunately, as it stands now, Google Maps does not allow sending this to the phone without removing all detour points defined by dragging:

enter image description here

One workaround is to redefine each detour point not by dragging but by adding its specific location (address, or lat/long), in which case the custom itinerary can be sent to the phone as-is. This has to be within the limit of no more than 10 named detour points, but then again the same limit also applies to dragged detour points, before the message “Route cannot be modified further” comes on.

The problem is that, for long tours, while you’re on the road, if you accidentally do an extra back tap on your phone, the entire itinerary is lost, and the only way to get it back is to use the “send to phone” command on an online computer, which may not be available.

Any solutions based on Google My Maps don’t seem good, as they all lack turn-by-turn navigation. Even more advanced options such as saving the tour as a GPX are out of the question if you’re going to navigate with Google Maps Android, as it does not do GPX.

Is there any way (even hacky) to retrieve the custom itinerary directly from the phone, without the need to send it from the computer?

amazon ec2 – ec2 instance postfix email not sending

My client spun up a new ec2 instance and gave me ssh access. I have set up a LAMP system serving a WordPress site. Everything is working nicely, except email isn’t being sent.

I have not done anything, as far as, email configuration, yet.

When I try from the command line, the following:

sendmail MY-EMAIL@gmail.com < ~/email.txt

No feedback is returned. When I check the end of /etc/maillog file, there is the following:

TIME IP postfix/pickup(#): #: uid=1000 from=<ec2-user>
TIME IP postfix/cleanup(#): 7644720EDF: message-id=<20200524122559.7644720EDF@IP.ec2.internal>
TIME IP postfix/qmgr(#): 7644720EDF: from=<ec2-user@IP.ec2.internal>, size=355, nrcpt=1 (queue active)
TIME IP postfix/smtp(#): connect to gmail-smtp-in.l.google.com(142.250.31.26):25: Connection timed out
TIME IP postfix/smtp(#): connect to gmail-smtp-in.l.google.com(2607:f8b0:4004:c09::1a):25: Network is unreachable
TIME IP postfix/smtp(#): connect to alt1.gmail-smtp-in.l.google.com(172.253.116.26):25: Connection timed out
TIME IP postfix/smtp(#): connect to alt1.gmail-smtp-in.l.google.com(2a00:1450:400b:c02::1a):25: Network is unreachable
TIME IP postfix/smtp(#): connect to alt2.gmail-smtp-in.l.google.com(2a00:1450:400c:c03::1b):25: Network is unreachable
TIME IP postfix/smtp(#): 7644720EDF: to=<MY-EMAIL@gmail.com>, relay=none, delay=60, delays=0.01/0.01/60/0, dsn=4.4.1, status=deferred (connect to alt2.gmail-smtp-in.l.google.com(2a00:1450:400c:c03::1b):25: Network is unreachable)

I’ve tried sending to other domains, such as yahoo.com and live.com with similar results.

Some of the suggestions solutions, I have across, suggest setting (from server fault):

inet_protocols = ipv4

But that seems like going backwards a bit.

There also been some mentioning of setting up Amazon SES or filling out an Amazon request for port 25 access. Anything going through AWS, I would need to my client to do.

I just want a low key, low maintenance solution. The site, likely won’t sending more than a couple of dozen emails or so, a week.

Any suggestions on how to get through this?

dnd 5e – Can a druid use a Sending Stone while in Wild Shape?

Per the description of the sending stones:

Sending stones come in pairs, with each smooth stone carved to match the other so the pairing is easily recognized. While you touch one stone, you can use an action to cast the sending spell from it. […]

And the description for Wild Shape states: “You can’t cast spells”. At least not until you’re high enough level.

Food for thought

The sending stones only work once per day. You can Wild Shape twice per rest. So you could Wild Shape, do your recon, revert to normal, use the stone, Wild Shape again, and then head back to the party.

dnd 5e – Can you use a sending stone while you’re wild shaped

Per the description of the Sending Stones:

Sending Stones come in pairs, with each smooth stone carved to match the other so the pairing is easily recognized. While you touch one stone, you can use an action to cast the sending spell from it.

And the description for Wild Shape states; “You can’t cast spells”. At least not until you’re high enough level.

Food for thought

The sending stones only work once per day. You can Wild Shape twice per rest. So you could Wild Shape, do your recon, revert to normal, use the stone, Wild Shape again, and then head back to the party.

pgp – GPG issues with sending and receiving keys

I’ve experimented a lot with GPG the last couple days and one issue persists:

Someone signed my GPG key and published it to a keyserver X. I can see on the webpage that his signature is shown under my key, so that worked. But my local PGP doesn’t understand:

gpg --keyserver (X) —refresh-keys (myKey)
gpg: refreshing 1 key from (X)
gpg: key (myKey): (...) not changed
gpg: Total number processed: 1
gpg:              unchanged: 1

If I check my signatures, that new signature doesn’t appear.

gpg --list-sigs (myKey)
=> only outputs the signatures I already had before (either manually imported or signed by other keys that belong to me)

Also, when signing a key and performing a --send-keys, it throws no errors but the key just never arrives on the servers. This only happens with some keyservers. I read something about ports maybe being closed by the firewall, but didn’t find any concise answer for what to check and how to fix.

Thanks in advance!

PS: Sometimes, the webinterfaces of the keyservers I’m using just load forever or are generally very slow or unreachable, is this normal?

Ruby – Sending commands to multiple servers using Net :: SSH

The idea

At my job, I am responsible for retrieving the logs from an online order list on a total of 12 servers. To do this, I connect them SSH (with a jump host in between) one by one, execute the script for each command, then analyze the output. All in all, a very tedious process which, I am sure, can be automated.

W -> J -> S

W = My Windows virtual machine

J = Red Hat jump box

S = Red Hat production servers

So the basic idea is as follows:

  1. Connect to each server by SSH

  2. On each server, execute commands for all commands placed by command line

  3. Associate each output with the command

Here is what I have found so far, and it works on my home lab. But before I make it work to offer it and try it on production servers, I want to know how the code can be cleaned up or done more efficiently.

The code

require 'net/ssh'
require 'io/console'
require 'pp'

ORDERS = ARGV.dup()     
ARGV.clear()            

SERVERS = (
    "prod1",
    "prod2",
    "prod3"
)

COMMAND = "aux_search.sh"

CONFIG = "C:/Users/myuser/.ssh/config"

RESULTS = ORDERS.each_with_object({}) { |k, v| v(k) = "" }

puts("Enter your username: ")
USERNAME = gets().chomp()
puts("Enter your password for accessing the servers: ")
SERVERPASSWORD = STDIN.noecho(&:gets).chomp()
puts("Enter your sudo password: ")
SUDOPASSWORD = STDIN.noecho(&:gets).chomp()

SESSIONS = ()
SERVERS.each do |server|
    session = Net::SSH.start(server, USERNAME, :password => SERVERPASSWORD, :config => CONFIG, 
        :verbose => :debug, :auth_methods => ("publickey", "password"), :verify_host_key => :accept_new)

    SESSIONS << session
end

SESSIONS.each do |ssh|
    ORDERS.each do |order|
        ssh.open_channel() do |channel|
            channel.on_data do |_, data|
                RESULTS(order).concat(data)
                if data.match(/(sudo)/)  
                    channel.send_data("#{SUDOPASSWORD}n")
                end
            end

            channel.request_pty() do |_, success|
                raise "Failed to request TTY for order #{order}" unless success
            end

            channel.exec("sudo ./#{COMMAND} #{order}") do |_, success| 
                raise "Could not execute command #{COMMAND} #{order}" unless success
            end
        end
    end
    ssh.loop()
end

puts("===Results===")
pp(RESULTS)

My ssh configuration

Host jumpbox
    HostName 192.168.16.2
    User johrus2
    IdentityFile C:Usersmyuser.sshid_rsa3
    Port 22

Host prod1
    HostName 192.168.16.3
    User johrus2
    IdentityFile C:Usersmyuser.sshid_rsa3
    ProxyJump jumpbox
    Port 22

Host prod2
    HostName 192.168.16.4
    User johrus2
    IdentityFile C:Usersmyuser.sshid_rsa3
    ProxyJump jumpbox
    Port 22

Host prod3
    HostName 192.168.16.5
    User johrus2
    IdentityFile C:Usersmyuser.sshid_rsa3
    ProxyJump jumpbox
    Port 22

```