fbpx

Technical Series: Why Can’t I Send Email to Hotmail (and Other Email Providers)?!

For those of us actively running and maintaining email servers, we understand all too well that clients sending emails to Hotmail, Outlook, Yahoo!, Verizon.net and other email service providers can sometimes end with the dreaded 550 error message bounceback.  What seems to be a very trivial matter can quickly devolve into a limitless black hole of time spent trying to determine why certain email accounts cannot be delivered to from your mail server.  As with most things in life, it is often a combination of the following factors:

  • Open Relay. This is far and away the most egregious of mail server sins.  If not properly configured, a mail server can be allowed to permit spammers to route email through the server.  There are many ways to check for an open relay on a mail server, including free online utilities such as mxtoolbox.com.
  • Lack of Reputation for Mail Server. Several things can affect the reputation of an email server, including IP reputation, spam complaint rate, email bounce-back rate and blacklist status.  In short, having a good reputation for a mail server requires a good associated IP address reputation, a low spam complaint rate, a low email bounce-back rate and not being listed on any spam blacklists.  There are more factors involved with the determination of mail server reputation, but these are some of the more common ones discussed.
  • No Reverse DNS Record (PTR). Also known as “pointer records”, PTRs are typically used for reverse DNS.  In other words, a PTR is used to map an IP address to a hostname.  Many email servers look for a PTR when an email is attempted to be delivered.  If a PTR is not present from the sending email server, oftentimes the email will not be allowed to be delivered.  This creates a bounce-back email, which can negatively affect the sending email server’s reputation.
  • No SPF Record. An SPF record identifies which mail servers are allowed to send email on behalf of your domain.  Similarly to the presence of a PTR, the lack of an SPF record can negatively affect the sending email server’s reputation due to the creation of a bounce-back email.
  • Blacklisted IP Address. Blacklists are a means of compiling IP addresses for mail servers that have been reported to be sending spam.  There are many such lists, including Spamhaus, Spamcop and Barracuda Reputation Block List just to name a few.  Mail servers check the origin of email messages against blacklists and will typically reject email coming from listed offenders.  Multiple free, online tools can be used for investigating your mail server blacklist status (such as mxtoolbox.com) for checking your mail server’s spam blacklist status.
  • SMTP TLS. SMTP TLS (Transport Layer Security) is a method used where two email servers that are transmitting a message between them automatically negotiate an encrypted channel so that the emails transmitted are secure.  Most mail servers have the ability to ONLY accept emails from mail servers that support TLS SMTP.
  • Configure DKIM for Local Domains. DKIM provides a means for verifying the integrity of a message. A mail server enabled with DKIM adds a signature to email messages sent from it that can be used to verify the contents of said email by the receiving mail server.  Again, some mail servers are configured to only accept email messages from mail servers enabled with DKIM.

There are many factors that can prevent an email message from being delivered.  Fortunately, most mail servers send bounce-back emails when an email message is not delivered that include error messages and failure codes.  These codes are a good place to start when your email messages are not getting to their desired destination.  If the error codes are not providing much insight into the overlying issue, try contacting the email provider you are trying to send email to (e.g. Google for Gmail, Microsoft for Outlook.com and Hotmail, Yahoo!, etc.).  While the larger email providers are not forthcoming with what exact blacklists they use or other metrics used to determine if an email is delivered, they often have means of remediation where you can get your email server removed from their “do not accept” lists.

With a few internet search engine queries, a chat or email with the email provider you are trying to send emails to, and a little luck, your email messages will be on their way!

 

References:

https://www.mailenable.com/kb/content/article.asp?ID=ME020003

http://forum.mailenable.com/viewtopic.php?t=17208

https://answers.microsoft.com/en-us/outlook_com/forum/oemail-osend/unable-to-send-emails-to-microsoft-email-accounts/1c502639-120a-4d19-9dd2-2d6534ca4e55

Server rep: https://fulcrumtech.net/resources/improve-email-delivery-rate/

PTR: http://help.dnsmadeeasy.com/managed-dns/dns-record-types/ptr-record/

SPF: https://support.google.com/a/answer/33786?hl=en

Blacklist: http://www.inmotionhosting.com/support/email/email-troubleshooting/why-do-mail-servers-get-blacklisted

https://sendgrid.com/blog/blacklisted-check-7-popular-blacklists-keep-reputation-intact/

SMTP TLS: https://luxsci.com/blog/how-to-tell-who-supports-tls-for-email-transmission.html

DKIM: http://www.mailenable.com/documentation/8.0/Enterprise/Domain_-_DKIM_(DomainKeys).html

 

Is your website ready for the next Google SSL update and how will it impact your business?

Does your website start with “http://” or “https://”?

If it is the former rather than the latter, your website visitors (and your business) may have a large surprise starting October 1, 2017!

According to Google, “Starting October 2017, Chrome (version 62) will show a “NOT SECURE” warning when users enter text in a form on an HTTP page, and for all HTTP pages in Incognito mode.”

More simply put, if your site does not have an SSL certificate on October 1, 2017, Google Chrome will mark it as “NOT SECURE” if there are any text fields.

What does an SSL do for me?

SSL (Secure Sockets Layer) Certificates encrypt the connection between the web browser and the server where the website resides. This makes it much harder for someone to intercept the traffic and steal the information, which in turn leads to a safer browsing experience for the average web user.

This is the second step in Google’s plan to force users to employ an SSL certificate. Step one was implemented in January of this year. It marked sites as “NOT SECURE” if they did not have an SSL certificate and accepted personal data, like credit cards or PayPal. This step, implemented October 1, will mark any site with text fields as “NOT SECURE” without an SSL. The final step, planned to roll out soon, is to mark any site as “NOT SECURE” that does not have an SSL certificate.

Because it is so much more secure, Google would prefer to have all websites protected by an SSL certificate. They have reinforced this notion in their ranking algorithm as well, with SSL protected websites ranking more highly.

What does this mean for you?

Your business and your website traffic are at risk with no SSL certificate!

What should I do to avoid this situation?

Talk to your webmaster or the person that handles your website hosting about adding an SSL.

Don’t have an SSL or not sure where to start?

Contact Integrity First Technology Solutions, Inc. (412.559.7177 or si@iftsdesign.com) and let them take care of it for you.

Don’t miss this opportunity to upgrade your website. Protect your clients and your website’s reputation!

Why Do I Need an Email Address With My Domain Name?

Have you ever noticed an email address on a business card or website like “greatlakes16@verizon.net” that just screams “unprofessional”?

Chances are that the answer is yes.

While the email address is not offensive, it does not convey a sense of professionalism (or branding), either.  All businesses today should have email addresses using their website domain name (e.g. jane.doe@mybusinessdomain.tld).  It is a relatively inexpensive bit of marketing you can do to lend your company’s online presence more credence.

What about individuals that are used to checking just their personal email account, and worry that creating a new email address using their domain name will disrupt their workday flow?

Most email services (Gmail, Outlook, Hotmail, Yahoo!, etc) provide email forwarding to overcome this obstacle.  One can easily forward all email from their professional email address to another email address (e.g. their personal email address).  This prevents the need for checking a separate email address.

So how do you get a professional-looking email address?  It is a very simple process, and only requires two steps:

  1. You must have a domain name registered:  For example, if you have a website at mybusiness.tld, you most likely already have your domain name registered.  If you do not have a domain name, typical TLD’s (Top Level Domains such as .com, .net and .biz) can be registered though IFTS for $19.99 per year.
  2. You must subscribe to an email service: There are several email service providers that offer a number of useful features for business users, including extensive address book tools and spam protection.  Expect to pay at least $5 per user per month for an email service.  IFTS can facilitate setting up an email service to utilize your domain name.

Alternatively, most hosting providers offer a limited email solution free with a hosting plan that will make use of your domain name.  These email services tend to not be as full-featured as the paid email options from Google, Microsoft and Yahoo!, and are less reliable due to being dependent on your hosting provider’s server availability.  In other words, when their server goes down, so does your email!

Which email service is right for you?  IFTS exclusively recommends using G Suite by Google Cloud email service (https://gsuite.google.com).  This is Google’s business email offering, and offers a very robust webmail experience, as well as included cloud storage and integration with their business productivity web applications.

IFTS can easily route your email to G Suite.  The cost is $5 per user per month, and you can have multiple aliases associated with each user.

References:

http://www.productivity501.com/setup-your-email-to-look-professional/262/

https://iwantmyname.com/blog/the-guide-to-getting-your-own-custom-email-address

https://clickwp.com/blog/professional-email-address/

https://problogger.com/how-to-set-up-an-email-account-that-uses-your-domain-name/