| Dear Reseller,
As part of LB’s efforts to cut down unsolicited email from their system and the problems created due to it, they’re introducing certain measures to mitigate such activities. The idea behind these measures is to ensure that our email system is not viewed suspiciously by other service providers, which would lead to email originating from our servers to be deferred or rejected. A lot of spam email that gets caught in LB’s anti-spam filters, and is reported to us by the feedback loop with other email service providers, shows a high correlation with spoofed envelope from addresses. For example, when a user a@domain.com authenticates with smtp.domain.com in order to send a mail from our outbound servers, he can currently set whatever he wants as his “from” address, including email addresses that don’t actually exist. This is a widely used method for email spoofing. In order to avoid such instances, users will now be asked to register a set of identities from their webmail interface for email addresses that need be used to send email. Every identity must have a valid email address, which must be authorized before it can be used to send email. The process to do so is fairly straight forward – 1. The user must log on to Webmail as a@domain.com, and add the necessary identities, say sales@domain.com and x@gmail.com. 2. The system will send verification emails to sales@domain.com and x@gmail.com, asking them: “a@domain.com is trying to use x@gmail.com to send email, do you want to allow this?“ 3. Upon confirmation, the user will be able to send email as x@gmail.com or sales@domain.com from their account. 4. A list of user accounts are allowed to use sales@domain.com as their from address will be stored by the system (since there may be more than one user who may want to use the same from address). To know more about setting identities, you may refer to this article: http://support.mailhostbox.com/email-users-guide/sender-identities LB are monitoring email logs to identify accounts that are sending email in this fashion. They shall pro-actively add identities for these accounts, and send out alerts to clients using a different ‘from’ address than the authenticated one. However, they might not be able to determine all users who need this feature. Thus, we recommend that you inform all your clients about this policy change, and ask them to add sender identities if required. The identities must be created and verified before the 24th of March, after which any unauthorized ‘from’ address will not be allowed to send email. |
Month: March 2011
Dear Reseller,
We’d like to draw your attention to the upcoming pricing changes for .BIZ and .ORG domain names. Please note that this pricing only applies to resellers reselling .BIZ and .ORG through NetEarth One:
New .BIZ Prices
To accommodate the Registry Price Hike announced by the .BIZ Registry, we will be increasing the Prices for .BIZ Domains from the 30st of March, 2011 at 12:30 UTC.
Following the hike, the Prices for .BIZ will be as follows:
Tier 1 : $9.90
Tier 2 : $9.40
Tier 3 : $9.10
Tier 4 : $8.99
Tier 5 : $8.79
NEW .ORG Prices
To accommodate the Registry Price Hike announced by the .ORG Registry, we will be increasing the Prices for .ORG Domains from the 30st of March, 2011 at 12:30 UTC.
Following the hike, the Prices for .ORG will be as follows:
Tier 1 : $9.90
Tier 2 : $9.40
Tier 3 : $9.10
Tier 4 : $8.99
Tier 5 : $8.79
As part of LB’s ongoing campaign against abuse and to ensure the security of our users’ email services, LB are planning to impose a stricter password policy for email accounts hosted with us. As a result of this change, the system will no longer allow passwords of the type that could be deemed vulnerable to sabotage attempts. Email account passwords must fulfill the following criteria henceforth –
1. The password must contain at least 8 characters (and can be up to 32 characters long).
2. The password can not contain the email prefix in its exact form. For instance, if your email address were john@yourdomain.com, then your password can not contain the word john.
3. The password must contain at least one alphabet (a-z in upper or lowercase), and at least one numeral (0-9).
To make communication with the end user easier for you, LB will shortly send a white-labeled advisory to all email users whose passwords do not satisfy these criteria, alerting them to update their password on or before March 20th, 2011. This email will be sent from do_not_reply@domainame.tld, For example if the domain name is xyz.com then the mail will be sent from do_not_reply@xyz.com and will include the new password criteria. It will not include any links.
If the users do not change their password then the password will be reset and a new password will be sent to the alternate email address of the end user.
LB will be displaying appropriate banners in the control panel and webmail of the end user as well.
We recommend that you contact your customers and inform them about this policy change. If you have any questions about this process, please contact our support team and we’d be happy to answer your queries.