Emails To Outlook.com Rejected By Faulty Or Overzealous Blocking Rules (theregister.com)
- Reference: 0180905978
- News link: https://tech.slashdot.org/story/26/03/04/1844224/emails-to-outlookcom-rejected-by-faulty-or-overzealous-blocking-rules
- Source link: https://www.theregister.com/2026/03/04/users_fume_at_outlookcom_email/
> A block list is a good thing. It helps stem the flow of spam from networks or addresses associated with junk email. However, the confusing thing for our reader is that his company was not on Microsoft's naughty step for email. A look at Microsoft's Smart Network Data Service (SNDS) showed no issues with the IP. "We're also a member of their JMRP (Junk Mail Reporting Program)," our reader added, "which is intended to inform us when people are reporting spam sent from our IPs - except, we never get any reports."
>
> The problem worsened in February. On Microsoft's support forums, users began to complain about similar issues as the IP net presumably widened. One [2]wrote : "We are currently experiencing a critical and recurring email delivery issue affecting recipients at outlook.com, live.com, hotmail.com, and msn.com," and provided a copy of an error that suggested the mail server has been "temporarily rate limited due to IP reputation." The user drily noted, "Although the error indicates rate limiting, in practice no emails are being delivered."
>
> A large number of users, ranging from the administrator of a server sending automated notifications on behalf of Estonian Public Libraries to an email provider for healthcare professionals, chimed in to confirm they too were having delivery problems and Microsoft support was not helpful. [...] Unsurprisingly, our reader spoke on condition of anonymity - nobody wants to be the ISP that has to say, "Yeah, we can deliver your email anywhere but Outlook.com" to customers. We asked Microsoft to comment, but other than acknowledging our questions, the company did not respond further.
[1] https://www.theregister.com/2026/03/04/users_fume_at_outlookcom_email/
[2] https://learn.microsoft.com/en-us/answers/questions/5786144/all-sending-ips-temporarily-rate-limited-(451-4-7
Using Microsoft ... (Score:2)
.... and you have problems?
You must be new here!
--
You have the right to remain stupid. Doesn't make it a good idea!
Let me guess . . . (Score:5, Funny)
Microsoft entrusted their Outlook settings to Copilot
What actually happened? (Score:5, Interesting)
First let's acknowledge this hilarious statement: "chimed in to confirm they too were having delivery problems and Microsoft support was not helpful", Microsoft support is useless.
On a serious note, what could they have actually screwed up? Anyone who has administrated an email server, knows all too well, the massive headaches that filtering services cause, that DNS errors cause, that configuration issue causes, and so on. Administering email is a truly terrible, annoying, difficult, rage inducing cluster bleep.
At one company, ~10 years ago, out of nowhere, all our emails to any Yahoo address, went to spam. Our IP reputation was excellent, we had no black marks, weren't on any black lists, and the DNS was correctly configured. The issue ended up being the SPF record in the DNS, and it wasn't wrong, Yahoo just decided, out of nowhere, to reject reading it properly. The fight I had with Yahoo over that issue, lasted weeks, and they kept doubling down that my DNS configuration was wrong. Finally, after reaching who I have to assume was a 70-year-old grey beard, Unix master, he had us email him, and confirmed the parsing engine was configured incorrectly on their side. In 99.99X% of cases it didn't matter, but, we had a secure SPF configuration and the parser tripped up reading it, forcing all our emails to spam.
I'm actually interested to know exactly what went wrong here. It is probably the dumbest possible reason, and out of Microsoft's hands, even at their scale. Email is such a broken global system, that it is remarkable it works at all, and it really doesn't, it's just failing correctly most of the time.
Re: (Score:2)
> I'm actually interested to know exactly what went wrong here. It is probably the dumbest possible reason, and out of Microsoft's hands, even at their scale.
It's not impossible, but since Microsoft has fucked up email delivery to themselves by themselves before, the safest assumption is that it's happened again.
Re: (Score:2)
Not hard! Microsoft put standard rules in place, but forgot to exempt themselves! Most of the spam I get comes from Outlook.com and Google calendars.
Re: (Score:2)
They certainly could have fired a riffled into the bottom of the boat, but with email, they could have been duck hunting and the trigger changed the firing direction. Usually, I'm hard on Microsoft, but with this, I'm willing to give them the benefit of the doubt.
I've even seen dumb stuff like a company incorrectly flagging an IP, which happened to my current company 6 years ago. I don't remember the name of the offending company, but, they insisted our IP was the bad one, and it was back and forth with
Re: (Score:2)
Google is like this - their anti spam tools are only available if you *are* sending UCE. The small private domains sending a few hundred to a few thousand emails to gmail addresses annually cannot get access to them.
I have all the things set right: DKIM, DMARC, SPF, IP is in a "good neighbourhood", all the blackhole lists show my IP as clear, yet sending "hey, nice meeting you today, here's my email, looking forward to speaking with you again" type emails to a new gmail address almost always end up in their
Re: (Score:2)
I bet your DNS is correct, that's the most annoying part of it. The first thing everyone blames is DNS, which is fair because it's DNS, and DNS will DNS (yes, I just used it as a verb). When your DNS isn't wrong, and you stop doubting yourself, you can't go anywhere really. You might hit a home run and find out company X blacklisted your IP, so you can get it cleaned up, but outside of that, you can't do anything.
When I was a coop student for a small local IT company, 15 years ago, I remember we had an
Re: (Score:2)
I'm not sure what it could be -- every testing/checking tool I can find online passes it (and I learned a lot from that, including removing old cyphers), the banners/HELO etc are largely anonymized, yet by and large Google says "yeah nah" to the first few new emails to a new gmail address.
It'd be fantastic if they had a test page where you could send them an email or click a "start test" button and it'd go through and check everything that *THEY* look for, but it feels like they don't have a vested interest
Re: (Score:1)
Meta does the same to automated whatsapp messaging, you can get blocked even with their test page. One might need to send just very few messages in the first *months* of assigning a number to a automated token to have any hope to not get blocked again
Re: (Score:2)
Thank you for your service.
Soon "e-mail" will only be between two .. (Score:2)
.. of the largest providers, aka Gmail and MS (Outlook/Hotmail/whatever domains they have). Maybe Protonmail too, if you are lucky.
Microslop has been blocking wide network ranges for a long time, and probably for good reasons too.. The problem is that there are almost no mitigations. My own server ended up on such blocked range some years ago and trying to rectify it was like talking to a stone wall.
Re: (Score:2)
It's the Walled Garden V2.0. MSN was created when Microsoft figured that they'd scrape up all of AOL/CompuServe/misc business. That didn't work out so well. Now it's inside/outside the castle walls.
> The problem is that there are almost no mitigations.
I don't know about Microsoft. But this is the case for GMail. If you are on the inside, you can mail back and forth based upon your "reputation". Problem is: It's too easy to get a GMail address and spam the world. How do they know that someone is not a deposed Nigerian official with funds to move?
What do you want to bet... (Score:2)
that it's got something to do with AI-generated code?
Re: (Score:2)
Code? [sarcasm] That is thinking small. Companies need to leverage Copilot to all aspects of the business like settings, processes, decisions, etc. What could go wrong?[/sarcasm]
Just one week? (Score:1)
If you run email servers, you would know how those muppets interpret DMARC and that they break forwarding since at least May 2025.
Outlook for years believed all Yahoo email is spam (Score:2)
I have an old Yahoo email address. Why is it not Gmail? Well, I have one of those too, but at the time I got the Yahoo email address, Google limited who got Gmail addresses and it took a while to get one. Yes, it was like 30+ years ago. For years now, on the rare occasions that I need to send email to someone at outlook.com or hotmail.com, I find out that almost every time my email from Yahoo is marked as spam. Usually I have to follow up with the recipient and ask them to check their spam folder fo
Happened to the company I work for (Score:2)
Two weeks ago, our emails to Microslop servers started to get blocked. M$ was utterly useless. SendGrid told us that this was happening to a lot of people. Took a few days fighting with M$ support before they finally fixed it for us (with a warning that if we didn't play nice, it could happen again. Our email reputation is like 99.99%) Amazing that they still haven't resolved the issue.
Not news to me (Score:2)
For a few years now I've found that Microsoft-controlled email addresses frequently bounce emails that I send from my own domain via my hosting provider. I'd be suspicious of my hosting provider's diligence in rooting out spam activity, if it weren't for the fact that I only ever get bounce-backs from Microsoft email addresses.
Replacing this PoS protocol from the steam age ... (Score:2)
... is _soooo_ overdue. Can't we just build an alternative to E-Mail already? Seriously, "outdated" is a serious understatement. Let's redo DNS while we're at it, that shit is 2-3 decades overdue for a reimplementation as well.
Hard asymetric encryption, digisig, OIDC Ident/Auth/Auth with anonymous true identity tokes, etc. This isn't rocket science, we know what needs to be done we just need to effing do it already.
Re: (Score:2)
Just an offhand question: have you ever tried to design, build, test, and deploy a replacement protocol for anything that's widely used on the Internet?
Hint: it's very easy to rant about. I do it all the time. It is fiendishly difficult to actually do, which I've done once, on the same day that everyone else did in 1983. Note that "everyone else" was a vastly smaller set of people than it is today.
MS is the worst... (Score:1)
MTA to try to deliver mail to.
I frequently have to fill out a form to try to get my mail server's IP off their naughty list. And in every case it's been, "Hey your IP is kinda close to someone else's that was naughty". Really? In world of exhausted ipv4 allocations, when I get to rent a single IP from my VPS provider, you're going to play that game? Give me a break.
Most recently, I had to give up on IPV6 all together has SpamHaus has decided that blocking entire ipv6 /64 networks is the correct course
Wow (Score:2)
I wondered why the usual deluge of spam to my ancient Hotmail account slowed to a trickle recently. I figured the spammer had died.
If only it was treated as spam (Score:2)
We've run into this misery and had to spend vast amount of hours trying to find solutions. Heck, even legitimate SendGrid emails end up being blocked.
The main issue is Microsoft doesn't even treat these emails as spam, for the user to decide, but instead just sends them into the void.
I've been forced to move off outlook.com (Score:2)
I cannot forward receipts from my retro-sexy @hotmail email to @expensify. Outlook informs me that the recipient server has rejected the email for spam policies. Except, it's not the recipient server - it's an intermediary system in outlook.
This was the last straw. Emails that never arrive in either direction, false positives constantly. After 30 years I've started to ditch my hotmail/outlook/live email across the board because they just. don't. work.
And Microsoft won't acknowledge or fix the problem. That'
There's a great irony here... (Score:2)
Microsoft and Google are now 1-2/2-1 in terms of the absolute numbers and relative percentages of spam/phish/etc. traffic that show up across all the mail servers that I run. Nobody else is even close.
Which means (a) they're doing a terrible job of accurately filtering their inbound traffic and (b) they're doing an even worse job of filtering outbound traffic. And they're doing this despite having more computing resources, more money, and more people than anyone else.
comcast (Score:2)
Comcast routinely blocks emails to me from legitimate sources. All these guys are super paranoid because they don't want a big news story that they allowed a billion dollar hack, not to mention the lawsuits.
Re: (Score:2)
Remember Roadrunner? They used to - regularly - both their own servers.
Some people should not be allowed to play with email servers.
Re: (Score:2)
Block their own servers. Sigh.
What if there was an email system spammers hated? (Score:2)
So y'all don't like Comcast? Or is that just collateral hatred of Microsoft? Time for funny?
I categorize my various email accounts by the quality and quantity of spam each one receives. Microsoft is #1 for sex spam, whereas Gmail dominates the fishing crapola, and also wins the volume of flatulence award. And now the google wants to sell me more storage for the garbage that has accumulated? (Is it worth an Ask Slashdot about memory management of google accounts?)
But if we can't solve such a visible and long
Doesn't shock me. (Score:2)
Frankly, most email providers do a really really bad job of things. I used to run my own email server, simply because I couldf do a better job even after finishing a bottle of mead than any of the providers out there could do with "highly trained" chipmunks. I probably still could.
Re: (Score:2)
Maybe, but they'd refuse to forward your messages.
Re: (Score:2)
Not chipmunks anymore, thats the problem. They are currently heavily inbred gerbils.