Mail Protection Measures on Psychology

Why was I referred to this website?

You are probably here because you e-mailed a user at the Rutgers the State University of New Jersey, Department of Psychology but our e-mail system bounced your mail with a "Client host [XXX.XXX.XXX.XXX] blocked using ... You are sending email from a banned SPAM SERVER. Please see http://psychology.rutgers.edu/emailpolicy.html (in reply to RCPT TO command)..." error message or "reject: RCPT from somedomain.com[X.X.X.X]: 450 <somedomain.com>: Helo command rejected: Host not found; .." error message.

This happened because we believe your e-mail server, or one or more servers trusted by your e-mail server, is hazardously misconfigured or is a known source of spam e-mail. Therefore we have deliberately chosen not to exchange traffic with your mail server. Another possibility is that you have a dynamically assigned network address and tried to send e-mail directly rather than using the outgoing mail server of your Internet service provider.

What should I do?

Please forward this information to your local e-mail administrator (usually e-mail postmaster@your.domain.name) and ask him/her to handle the issue. Please include the error message that you got. Meanwhile, you can contact us via the PTS system. The Psychology Ticketing System (PTS) system is available from this link

If you have a dynamically assigned network address, which is usual on DSL, modem and cable lines, please make sure you don't send your e-mail directly but through the outgoing mail server of your Internet service provider. If you don't know how to do this, please contact your Internet service provider.

If you are an e-mail administrator, please read on. As an e-mail administrator you can contact our e-mail administrator even from a blacklisted site by filling out a PTS ticket or by emailing us from an email server which is not currently being blocked.

What is spam and how is it distributed?

Spam (also known as UCE, or Unsolicited Commercial E-mail) is a great nuisance and a threat to communications on the Internet. Spam is often very annoying and it wastes both system and human resources.

The Department of Psychology has contacts throughout the world and so our e-mail addresses are known world-wide; as a consequence we have received massive amounts of spam.

This has forced us to take necessary measures to both block spam and try as much as possible to prevent it from reaching us, in addition to preventing our own mail hosts from being used to pass spam on to others.

Spam is distributed in several ways. Misconfigured server hosts, such as open e-mail relays and open proxies, have a major role. Open relays and open proxies are hosts that permit unauthorized users to forward (relay) e-mail messages or network connections. Spammers search out these hosts on the Internet and use them maliciously to send out their spam. What this means is that these open relays and open proxies are carriers of a lot of spam: if e-mail arrives from them, there is a good chance that it is spam.

A lot of spam is distributed through residential DSL, modem and cable connections. They are known to contain a countless amount of misconfigured mail and proxy servers and insecure workstation computers compromised by spammers. Hosts on these networks typically have dynamically assigned network addresses. E-mail should not be sent out directly from such networks but the outgoing mail server of the Internet service provider should be used. Each Internet service provider should have documentation for their customers on how to set up the outgoing mail server address.

More about open relays

Open relays are mailservers that have been proved to be somehow mis-used or hi-jacked by hackers to send massive amounts of mail which is otherwise unrelated to the owner of this mailserver. Most such abusive sessions are initiated by junk emailers, the spammers, attempting to covertly distribute their unwanted messages all over the Internet.

Blocking open relay or spam-friendly mailservers

The Department of Psychology and most of the major ISPs around the world utilize DNS blacklists in order to block compromised and spam servers. If you are doing business with companies in United States, Europe or UK, you are highly suggested to NOT use an open relay mailserver or a connection listed in these blacklists because in most cases your emails will either never be sent or will be quietly discarded by the recipients mailservers.

Blocking spam

In order to identify these spam-carrying hosts and networks, numerous publicly available registries have been created. These registries are blacklists of DNS addresses of individual hosts or entire networks that have been found vulnerable to spammers or are already being abused by them (see above: "What is spam and how it is distributed").

We use the following DNS blacklists at the moment:

The Spamhaus block list (SBL) A free realtime DNS-based database of IP addresses of verified spammers, spam gangs and spam services.

RFC Ignorant (Whois) List of IP's that do not comply with RFC's.

Spam and Open Relay Blocking System (SORBS) Lists open relays that send mail to one of the 'feeder' SORBS servers.

CBL list of email servers that are infected and maliciously sending emails

University of Alberta: The University of Alberta runs a large Openbsd spamd install in front of their main MX's, and perform extensive greytrapping of hosts that mail to invalid users while on the greylist. Hosts are removed 24 hours after they get trapped.

Nixspam the blacklist of the iX email filter is made of automatically generated entries without distinguishing open proxies from relays, dialup gateways, and so on. An email source just has to send spam to us to make it on the list. Several measures prevent widely used mail servers from being listed even if they are occasionally being abused for distributing spam.
The blacklist is being continuously updated and contains about 200,000 to 300,000 (not limited) IP addresses collected during the last 96 hours.

China/Korea CIDR list is made of these two countries which have chronic and pervasive practice of a) providing a safe haven for their own spammers; b) providing a safe haven for U.S. spammers; c) hosting mail servers which are open relays or proxies; d) being either too ignorant and/or lazy to secure those servers; and most importantly, e) almost never responding to or addressing abuse complaints (in the rare event their abuse reporting addresses even work)

If your e-mail server, or one or more servers trusted by your e-mail server, is listed in one or more of these blacklists, your e-mail messages to us are bounced back with a reference to the reason why the email was refused.

How to get off a blacklist?

The downside of being blacklisted is that bona fide e-mailers from blocked sites cannot reach us. The solution is: please tell your system administrators or service provider that your site is a source of spam or open to third-party (spam) relaying, and the configuration should be fixed immediately. If you are an e-mail administrator, please see the above links to find out the reason for the blocking. After fixing your configuration or stopping spamming, please see the removal instructions by following the links above. Once done, you will be delisted and e-mail connectivity will be restored.

If you have a dynamically assigned network address, which is usual on DSL, modem and cable lines, you are correctly listed in one blacklist. In this case please make sure you don't send your e-mail directly but through the outgoing mail server of your Internet service provider. If you don't know how to do this, please contact your Internet service provider.

Fixing one's configuration and getting removed from blacklists is not a single-handed action: many mail hosts have adopted DNS blacklists as a defense against spam, and because of the success of the system many more are adopting them.

Such blacklists are used by major network access and transit providers responsible for Internet connectivity, resulting in the complete network(s) that the open relay host is on being unreachable from large parts of the Internet.

There is also a legal consequence: sites that don't close their mail hosts for third-party relaying can be accused of culpable negligence and can therefore be held liable for the (financial) consequences.

In Conclusion

We hope you appreciate the need for anti-spam measures. In exchange for (we hope) a brief inconvenience such as you now have, we regain a lot of lost resources and suffer a lot less inconvenience from spam.

With kind regards,

e-mail administrators
Department of Psychology
Rutgers the State University of New Jersey