This question is very closely related to Setting email forwarding address, except that I want to use Microsoft Graph to get a list of all users that have set up e-mail forwarding and where. I don't need to change the address.
Is it possible to read the e-mail forwarding settings? I tried by getting the mailboxSettings object, but it doesn't seem to contain this information.
Related
I visited a website today from work in a private browser session (no other cookies stored). I have never visited the site before and our company does not have an account with them. After the page loaded, an animated greeting said "Welcome XXX" where XXX is the name of company I work for. I don't understand how this is possible.
How can I get the company or person name that was issued the IP, from an IP address?
Note that answers from here are giving the name of the issuer of the IP address. For example the issuer of our IP address is the cable company just like a non-business customer. When i do a lookup with http://ipinfo.io or similar services, I get the name of the company that issued and manages the IP address (cable company) and not the name of the person or company that uses it.
Note that one idea that came to mind for how someone got this data from our IP address is companies like https://segment.com. I saw this in the "BuiltWith" data for the website I visited. Segment has enough tooling to be able to map an IP address to a company name through matching data from other services. For example our company has accounts as our company name with 3rd parties that may also use Segment.
Data from multiple segment accounts would easily allow building a database with valid user names and other data that could be sensitive and matching it with an IP addresses. But as far as I can see, Segment does not offer this directly as a feature. So i'm still lost as to how a website knew the company I was working for just by me visiting the page.
Some IP geolocation providers such as Ipregistry or Ipinfo provide a field that includes a company name for a given IP address. It works well in some contexts but it can fall back to the ISP or ASN organization in charge of connection as you noticed.
How can websites spy you even when you are using incognito mode? It's not because you are using a private browser session and that cookies are not stored there is no means to identify you. There exist methods known as Browser Fingerprinting:
https://en.wikipedia.org/wiki/Browser_fingerprint
Besides, as you noticed, there are companies that collect a lot of data from authenticated users (including IP address and company name as entered by the user). Based on this information you can create a model that correlates data from authenticated users with an IP address: if an unknown user A connects from IP X and more than 70% authenticated users in the past that belongs to company C used the same IP X, then A is most probably working for or connecting from company C. Again, this is not perfect but works pretty well depending of the context.
I have a Google for Work account and I'm creating an e-mail address with my herokuapp domain (e.g. me#myapp.herokuapp.com). I have verified the domain by putting the meta tag in the header of my app. I can send e-mail through gmail from me#myapp.herokuapp.com but for some reason I can't receive e-mail. I'm curious what is causing the problem of the e-mail not going through.
If anyone has some insight, I would appreciate it. I know that it's possible to receive e-mail by using a custom domain in my heroku app, but I don't want to spend the money on a custom domain right now.
As mentioned by miketreacy, you would need to configure the DNS records for your herokuapp.com subdomain to point to the Google server.
This is not something Heroku allows you to do though. The only way you can send and receive emails from your app is with your own domain name.
Your MX records are not set to Google's. Currently, the MX records are listed as these. In order to receive emails at this domain - in your Apps account - you'll need to modify your DNS to match the MX records listed on Google's Support site.
So we are running a rails app on Heroku with the Sengrid add-on (free plan so no whitelabeling) (let's call it magicapp) and in our action mailer we always set the from field to be "noreply#magicapp.com". We have seen some of our email go to spam and someone suggested to us to try to alternate our email domain to improve deliverability.
So my questions are as follows:
What verification and checking goes on at the receiver side to verify that the email really is sent from "magicapp" and not just someone pretending to be magicapp?
Right now, when we send an email from "noreply#magicapp.com" the email says it's from "noreply#magicapp.com via sendgrid.me" so when receiver clients are doing spam checking, do they use my "magicapp.com" domain for reputation or the "sengrid" domain?
If it does use the "magicapp.com" domain, could I just set my from field in my action mailer to be a different domain such as "magicapp-mail.com"? Are there any potential issues to this or additional things to set up, like DNS etc? If I do this, will the receiver use the reputation of the magicapp-mail domain instead of magicapp then?
Any answers or information would be much appreciated, thanks!
I am pretty sure setting sendgrid's DKIM and SPF records properly will save your emails from being sent to spam. At least that's what worked in my app I was working on and emails ended in inbox, unless users hit Mark as spam instead of unsubscribe.
DKIM
DKIM stands for DomainKeys Identified Mail which was designed to help ISPs prevent malicious email senders by validating email from specific domains.
What a basic DKIM record should look like:
smtpapi._domainkey.yourdomain.com. | TXT or CNAME | value
smtpapi._domainkey.subdomain.yourdomain.com. | TXT or CNAME | value
TXT value: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDPtW5iwpXVPiH5FzJ7Nrl8USzuY9zqqzjE0D1r04xDN6qwziDnmgcFNNfMewVKN2D1O+2J9N14hRprzByFwfQW76yojh54Xu3uSbQ3JP0A7k8o8GutRF8zbFUA8n0ZH2y0cIEjMliXY4W4LwPA7m4q0ObmvSjhd63O9d8z1XkUBwIDAQAB
CNAME value: dkim.sendgrid.net
docs: https://sendgrid.com/docs/Glossary/dkim.html
SPF
Sender Policy Framework (SPF) is an email authentication standard developed by AOL that compares the email sender’s actual IP address to a list of IP addresses authorized to send mail from that domain. The IP list is published in the domain’s DNS record.
The DNS record should look like this:
yourdomain.com. | TXT | v=spf1 a mx include:sendgrid.net ~all
docs: https://sendgrid.com/docs/Glossary/spf.html
The key is your 2nd question. As long as you're not whitelabeled, the receiving server 'knows' the mail came from SendGrid, so it checks SendGrid for all DKIM & SPF records. SendGrid signs your mail with their own DKIM if you're not whitelabeled, so it all checks through.
"Alternating" the domain does not sound like a feasible way to avoid bulking of your mail. We're still in an IPv4 world, and IPs are still the main source of reputation tracking in the email world. No matter what domain your mail says it's "From", the receiving server knows what IPs gave it the mail (unless your domain is so bad it's blacklisted).
What does mail-tester.com say about your mail?
I was able to remove via asdfklsdj#ksjl.com etc from next to my email address that would appear to receiver of message from my email.
But if i expand i still see mailed by mandrill app. Is there a way to have to removed...
The Return-Path address for your emails is where things like bounces and other delivery events are sent. It's also known as the "envelope-from" or MAIL FROM address. (For Gmail users, the mailed-by header typically is generated from this address). You can customize the Return-Path domain used for your emails to change what's shown in Gmail. Instructions for this can be found in the Mandrill KB.
AFAIK there's no way to remove the "mailed by" in gmail. Mandrill must identify as the sending party and gmail is allowed to show it.
The best you can do is remove the 'via' using proper DKIM/SPF setup -- which it looks like you're already doing.
Yes, you can remove mandrillapp.com. Just follow the below steps.
Save the Return Path Domain in Mandrill
Go to Settings.
Choose Tracking & Return Path Domains.
Enter your subdomain and click Add.
Click Test DNS Settings to verify the settings for the subdomain you've added.
After that Go to Sending Default in Settings.
Set Return Path Domain as newly added Sub Domina.
Save these settings.
After that in header section you 'll see mailled-by value with the name of your subdomain.
I've been trying to update the From Address and Reply-to Address with a
new email address. The update appears to work, however, when an alert
is sent, SharePoint is still using the original email address. I've
tried several different addresses and the original email address is
always used. Has anybody experienced this before?
Sorry for the late response, but IIS needs to be restarted on your sharepoint server for those changes to take effect.