Mail Changes Coming! in AT&T Southwest

Re: Mail Changes Coming!

Wed, 09 Apr 2008 17:58:27 EDT

said by Corona :

of course, all I EVER get on my SBCGlobal.net account is SPAM SPAM SPAM. Thanks for selling my addy there AT&T. :/

I have a couple of at&t Yahoo! HSI sub accounts which get no spam. I see no evidence that AT&T has sold email addresses.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

Re: Mail Changes Coming!

Wed, 09 Apr 2008 17:44:44 EDT

Corona :

said by NormanS :

Set up your at&t Yahoo! HSI accounts to forward to the Yahoo! Mail Plus account.

of course, all I EVER get on my SBCGlobal.net account is SPAM SPAM SPAM. Thanks for selling my addy there AT&T. :/

Re: Mail Changes Coming!

Wed, 09 Apr 2008 16:07:45 EDT

NormanS : Set up your at&t Yahoo! HSI accounts to forward to the Yahoo! Mail Plus account.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

Re: Mail Changes Coming!

Wed, 09 Apr 2008 13:47:46 EDT

Corona : So, I have a personal yahoo email account, that is not associated with my ATT DSL account.

I pay yahoo for this mail Plus account.

From this personal mail Plus account, I POP multiple other accounts to this one place.

Yahoo Mail Plus doesn't support SSL for other accounts.

Now what?
--
Corona "No, make no mistake. It's not revenge he's after; it's a reckoning."

Check out the band 1000 Miles From Home

Re: Mail Changes Coming!

Mon, 24 Mar 2008 22:28:07 EDT

Rockrz :

For detailed instructions on making these changes in Outlook and Outlook Express, please click here.

Anybody know where "click here" is?

Would like to see the link so I can get those detailed instructions ;)

Re: Mail Changes Coming!

Sun, 24 Feb 2008 12:27:23 EDT

jimkyle : I haven't posted any screen shots yet; I'll have to check from her machine to see if the AT&T logo appears, but since she's never had a plain Yahoo! account I'm presuming that it's the AT&T interface. She is on a subaccount of my primary, as am I. I don't use the primary for anything other than getting about 100 spams daily even though it has never been posted on the net. More than half of these, though, are dictionary attacks...

(edit) Oops! I misread the "Reply to" and thought you were replying to me. Sorry!
--
Jim Kyle

Re: Mail Changes Coming!

Sun, 24 Feb 2008 00:59:40 EDT

NormanS : I have ten sub accounts. The screen shot I posted was for one of them. I don't have a "Check other mail / edit" option. That I can see. Did you set up your account to fetch email from some other POP3 account? I have not.

I noticed one other thing: No 'at&t' logo! Is that a Yahoo! Mail Plus account, set to use an 'sbcglobal.net' email address as an additional email address? All of my accounts, Primary, and sub, have the 'at&t' logo on the page in front of the Yahoo! logo.

I have done some additional tests, and am posting new screen shots. One shows an at&t Yahoo! HSI web mail page, with no POP3 fetch configured, another shows an at&t Yahoo! HSI web mail page with POP3 fetch configured. Both are sub accounts. The third is a plain Yahoo! Mail web page. Because this is not a paid "Plus" account, the option to fetch POP3 email from another service is not present.

BTW, the Gmail fetch fails. I can't find the place to set the POP3 port number, and Gmail requires use of port 995 with SSL for POP3 access.

With all due respect, I must submit that your screen shot shows a plain Yahoo! Mail Plus account web page, where that account has been configured to fetch email from an at&t Yahoo! HSI account in the 'sbcglobal.net' domain. But I am puzzled by the "Welcome" line; I guess I need to do soem further checking. Your case just looks very unusual, to me, and I am not sure what to tell you to fix the issue. You may be doing something Yahoo! did not expect a user to do.

--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

at&t Yahoo! HSI sub account, no POP fetch configured.
at&t Yahoo! HSI sub account, POP fetch configured.
Plain Yahoo! Mail web mail account.

Re: Mail Changes Coming!

Sat, 23 Feb 2008 16:36:59 EDT

jimkyle : Aha! So using the webmail interface through a firewall might be triggering it. Yet it's necessary to use the webmail interface to train the spamguard filters. Looks like a catch 22 to me...

Can somebody hassle Yahoo! to make their webmail interface comply with their own requirements?
--
Jim Kyle

Re: Mail Changes Coming!

Sat, 23 Feb 2008 14:11:34 EDT

jonrkc : The option is reached from where it says "Check other mail / edit" -- which is for your sub-account if any...

Re: Mail Changes Coming!

Sat, 23 Feb 2008 12:37:19 EDT

NormanS :

said by jonrkc :

There is an option, if you go to "Edit" in web mail for your extra account, to change the port from 110 (Yahoo's provided one -- obviously they're a little behind on their inter-office communications...) to something else.

I don't see this "Edit" option. The screen shot shows my web mail options. I explored a couple of the choices, but I found no port number option.

I also tried checking under the member account information. I just don't see where, on the web, to change the ports.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

Web mail options.

Re: Mail Changes Coming!

Sat, 23 Feb 2008 11:51:53 EDT

jonrkc : Yes, I run Ubuntu Linux and it uses the standard IPTables setup for firewall. The only thing that seems to trigger the warning messages is this: If I check my SUB-ACCOUNT (not my regular account) via ATT/Yahoo! web mail, then I get a warning. I tried the same thing with firewall disabled for a few minutes, and no warning. So with no protection I don't get a warning, and with protection in place I get a warning.

:)

There is an option, if you go to "Edit" in web mail for your extra account, to change the port from 110 (Yahoo's provided one -- obviously they're a little behind on their inter-office communications...) to something else. I changed it to 995 and got a time-out. I figure there is yet something else I need to change in my firewall settings, then, but I'm just not up to spending hours trying to find out what to do. I have a few other things (not many, but a few) in my life besides email.

Re: Mail Changes Coming!

Sat, 23 Feb 2008 11:42:13 EDT

David : WHat firewall were you running that was causing it to pop up?

Re: Mail Changes Coming!

Sat, 23 Feb 2008 11:28:21 EDT

jimkyle : Interesting! My own LAN goes through a Linux box that serves as a router and perimeter firewall, while my wife's machine goes straight to the AT&T gateway (I'm on a grandfathered 5-true-static-IP plan and we're on different IPs since I've never gotten XP Pro to communicate with the Linux router)...
--
Jim Kyle

Re: Mail Changes Coming!

Sat, 23 Feb 2008 11:14:51 EDT

David : I think it is a linux firewall, jonrkc what firewall was it that was causing the problem (message appearing?

Re: Mail Changes Coming!

Sat, 23 Feb 2008 10:57:19 EDT

jimkyle : Interesting. Did he say what firewall he was using? Here, all the machines are using Tiny/Kerio 2.1.5 -- but my machine that does NOT get the messages runs Win98SE while her machine that DOES get them runs XP Pro...
--
Jim Kyle

Re: Mail Changes Coming!

Fri, 22 Feb 2008 23:41:21 EDT

David : one person in the direct forum we found out it could also be personal firewalls as well.

apparently when he deactivated the firewall it didn't trigger a message, but once he put it back up it came back.

Re: Mail Changes Coming!

Fri, 22 Feb 2008 23:26:28 EDT

jimkyle : That may be the major cause, but it's certainly not the only one. In my wife's case, there's no other program of any sort accessing the mail server, and Outlook Express has been configured for the secure ports ever since the change was first announced. She's still getting the nastygrams from Yahoo! at the rate of two or three a week. I tell her to just ignore them.

However I never get them; I just get about 200 spam messages a day at sbcglobal.net. I've quit using the AT&T/Yahoo! mail for my personal and business correspondence and let the spam pile up in the inbox there. but clear it out every couple of days...
--
Jim Kyle

Re: Mail Changes Coming!

Fri, 22 Feb 2008 22:04:09 EDT

GB34 :

said by David :

.......If you have any interfaces besides that one that is checking your e-mail also (say a blackberry, Iphone or another computer) and they are not using the secure ports, that will generate this e-mail as well.

I believe that David has nailed the source of many of these messages. I still use MailWasher to preview my e-mails before I download any of them. I finally realized that MailWasher probably needs to be changed to the proper settings also even though it doesn't actually download the messages into my e-mail program. I made the changes and what do you know, no more messages from Yahoo!

Re: Mail Changes Coming!

Fri, 15 Feb 2008 22:50:55 EDT

jonrkc :

said by David :

From what I understand, and I got another person that was getting this tonight. If you have any interfaces besides that one that is checking your e-mail also (say a blackberry, Iphone or another computer) and they are not using the secure ports, that will generate this e-mail as well.

I have Yahoo! Calendar send reminders to my cellphone, using the address format 816xxxxxxx@mywellknownmobilenetwork.com where the x's replace my cellphone number, and the provider's name is disguised but is a household word. :) There is nothing in the mobile setup page for Yahoo! Calendar about secure settings, nor would I have any idea how to obtain a "secure" port on my phone -- it was pretty hard just to get a regular address!

But this is completely separate from my POP/SMTP email, as far as I know.

Re: Mail Changes Coming!

Fri, 15 Feb 2008 20:48:30 EDT

David : From what I understand, and I got another person that was getting this tonight. If you have any interfaces besides that one that is checking your e-mail also (say a blackberry, Iphone or another computer) and they are not using the secure ports, that will generate this e-mail as well.

Re: Mail Changes Coming!

Fri, 15 Feb 2008 20:45:46 EDT

jonrkc : Maybe I missed something, but I have not seen here an explanation of why these troublesome messages from AT&T/Yahoo! are still being sent -- only that they are probably, if not definitely, in error. (I got a reply to that effect in the AT&T Direct forum.)

I am receiving these messages, which amount to a threat to terminate POP service, almost every day now. My settings are secure.

Isn't this at best very bad public relations for the provider?

I find it hard to just "ignore" messages from a supposedly reputable company (or pair of companies) that constitute a warning that I may lose part of the service I pay for and whose terms I've complied with.

This is more than tiresome, it's troubling.

Re: Mail Changes Coming!

Fri, 14 Dec 2007 21:12:54 EDT

David : yep, you are ok as long as you go through your host's E-mail server and not ours.

You are fine.

Re: Mail Changes Coming!

Fri, 14 Dec 2007 21:11:14 EDT

simplykristi : The domain does exist and is registered to me. :) With the info I have, I am OK then?

Kristi
--
My Photo Gallery: »www.simplykristi.smugmug.com/

Re: Mail Changes Coming!

Fri, 14 Dec 2007 21:02:56 EDT

David :

said by simplykristi :

So if I set the smtp to Yahoo and the port to 587 (my host will not change the port), I can still receive my email on my domain?
Kristi

you can still use their e-mail for their server whatever it's name is.

Example:

if simplykristi.com existed, and your mailserver (pop3) was say

send: mail.simplykristi.com
recieve: mail.simplykristi.com

and they have you use the respective ports 25 and 110

this e-mail alert will not change that aspect of the service.
--
If you have a topic in the direct forum please reply to it or a post of mine, I get a notification when you do this.
Koetting Ford, Granite City, illinois... YOU'RE FIRED!!

Re: Mail Changes Coming!

Fri, 14 Dec 2007 20:35:56 EDT

simplykristi : I set up a sub account just in case I have any more problems. :) I manage the email accounts and all even tho the bill is not in my name. I will keep my domain... I am just frustrated with email set up for non-AT&T domain users aka non-third party users like myself. :)

Thanks, everyone! :)

Kristi
--
My Photo Gallery: »www.simplykristi.smugmug.com/

Re: Mail Changes Coming!

Fri, 14 Dec 2007 15:38:41 EDT

David : I got the verification back again today.

Any Webhost provider that gives you their own server (example: mail.mywebhostprovider.com ports 25/110, pop3.mywebhostprovider.com ports 25/110) are not affected by this change. It only affects AT&T owned domains. (example: swbell.net, pacbell.net, sbcglobal.net)

Re: Mail Changes Coming!

Fri, 14 Dec 2007 14:11:48 EDT

NormanS :

said by simplykristi :

So if I set the smtp to Yahoo and the port to 587 (my host will not change the port), I can still receive my email on my domain? I must say that I have been less than pleased with AT&T's mail set up for those of us who don't use AT&T's mail.

You don't have to use the Yahoo! servers for your own domain; you can use your domain provider's servers.

If I understand what Matthew is saying, ~~AT&T~~ at&t Yahoo! HSI customers using one of the nine legacy SBC domains should be using the '[pop|smtp].att.yahoo.com' mail servers with port 995, or port 465 and SSL.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

Re: Mail Changes Coming!

Fri, 14 Dec 2007 13:18:26 EDT

David : Well from what I understood it should not affect any 3rd party mail providers. I will double check again today but it should still allow (mail.simplykristi.com or whatever) on whatever port they want you to connect with.

Re: Mail Changes Coming!

Fri, 14 Dec 2007 12:31:13 EDT

simplykristi : So if I set the smtp to Yahoo and the port to 587 (my host will not change the port), I can still receive my email on my domain? I must say that I have been less than pleased with AT&T's mail set up for those of us who don't use AT&T's mail.

Kristi
--
My Photo Gallery: »www.simplykristi.smugmug.com/

Re: Mail Changes Coming!

Fri, 07 Dec 2007 19:14:28 EDT

David : Ok long story short, any and all AT&T e-mail irregardless of domain, has to be sent through this server now they must use smtp.att.yahoo.com (SSL). I have recieved comfirmation you can still use your own domain e-mail server (ex. mail.mydomain.com) on the ports they specify. This will not affect ports 25/110.

Hopefully that will satisfy the curiosity, if you already on the secure settings or it accidently hit your Yahoo! only account. Just disregard it, it's like a blanket notice (public service message). If you haven't done it, do it now. If you have, just disregard.
--
If you have a topic in the direct forum please reply to it or a post of mine, I get a notification when you do this.
Koetting Ford, Granite City, illinois... YOU'RE FIRED!!

Re: Mail Changes Coming!

Thu, 29 Nov 2007 21:13:12 EDT

Matthew : Would anybody who has updated all of their settings as requested and is still getting the notification that they need to update their settings please create a new topic in the Direct Forum? Please include the DSL telephone number and the e-mail address recievening the e-mail.

Also, if you could keep a copy of the e-mail in your inbox for now that could prove helpful in tracking this down.

Re: Mail Changes Coming!

Thu, 29 Nov 2007 18:12:49 EDT

simplykristi : I did look at the header.

Here it is:

Received: from [204.71.200.245] by web83712.mail.sp1.yahoo.com via HTTP; Thu, 29 Nov 2007 14:07:50 PST
Date: Thu, 29 Nov 2007 14:07:50 -0800 (PST)
From: Yahoo!
Reply-To: @att.net (deleted part of the address for privacy)
Subject: Message From Yahoo!
To: branstetters@att.net
MIME-Version: 1.0
Content-Type: text/html; charset=us-ascii

Kristi
--
My Photo Gallery: »www.simplykristi.smugmug.com/

Re: Mail Changes Coming!

Thu, 29 Nov 2007 18:09:18 EDT

simplykristi : Yeah we just got one of those messages. Everything is set up correctly. What's the deal?

Kristi
--
My Photo Gallery: »www.simplykristi.smugmug.com/

Re: Mail Changes Coming!

Sat, 24 Nov 2007 10:40:39 EDT

jimkyle : Here's the full source of the most recent message she got. Certainly looks like a legitimate Yahoo! source message to me. This is a copy-and-paste from OE's properties page, show source, with her User ID replaced by "xxx" in two places but no other editing.

I'm a bit puzzled as to why her address was in the "Reply to" header field, but I guess that's one way to defeat attempts to reply to the message...
--
Jim Kyle

yahoo.zip 1,836 bytes
Latest Message

Re: Mail Changes Coming!

Fri, 23 Nov 2007 15:01:27 EDT

NormanS : Nobody has posted one of these notices with full headers. Without full headers, how can anybody determine bogosity? I don't see the usual glaring grammatical errors of a "phish" in as much of the notice as has been posted. Nor anything which looks like a direct attempt to "phish" personal information.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

Re: Mail Changes Coming!

Fri, 23 Nov 2007 14:04:45 EDT

jordanair : Yahoo abuse is stating that these emails have forged headers..and are not sent by ATT/Yahoo.. Had a similar case Monday may try to send this to the abuse link

Re: Mail Changes Coming!

Fri, 23 Nov 2007 07:29:17 EDT

NormanS : I'd give it a shot. I can't say if they can do anything, but it wouldn't hurt.

I've been watching my accounts more closely now; but I have yet to see even one. I wonder what is triggering them?
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

Re: Mail Changes Coming!

Thu, 22 Nov 2007 18:11:26 EDT

jimkyle : Got yet another such Yahoo! message this morning, with the implied threat level escalated. Think there's any possibility of getting this problem looked at via AT&T Direct?
--
Jim Kyle

Re: Mail Changes Coming!

Thu, 22 Nov 2007 16:15:57 EDT

NormanS : Sorry, I confused POPFile with YPOPs. Different type of application.

Re: Mail Changes Coming!

Thu, 22 Nov 2007 09:37:58 EDT

jimkyle :

said by NormanS :

I don't understand what port 110 has to do with POPFile.

It's quite simple: PopFile can only do its thing on plaintext message traffic, and when OE uses SSL in both directions, the incoming traffic that PopFile sees is encrypted. The decryption doesn't happen until the message gets to OE.

She wasn't using the latest version of PopFile so I can't comment on your mention of port 80 traffic, but we were configured for PopFile to receive from the server on port 110, and feed the filtered output to OE on port 110 internally via the localhost address. Traffic going to the server was sent direct via SSL with no spam or AV filtering at all -- which ought to be the only thing an ISP needs to be concerned with, since that's the only way for malware to abuse the ISP's network...
--
Jim Kyle

Re: Mail Changes Coming!

Thu, 22 Nov 2007 01:27:21 EDT

NormanS : I don't know what might still be triggering the message. I do suspect that the cutoff "threat" may be driven by Yahoo!, though. I have two Yahoo! Mail accounts with Yahoo! CC TLD domains; both of them are now configured to work with SSL. Here are the Help pages for Yahoo! Mail Plus, Yahoo!7 Mail(Australia), and Yahoo! メール (Japan):

»help.yahoo.com/l/us/yahoo/mail/o···-08.html
»help.yahoo.com/l/au/yahoo7/mail/···-08.html
»help.yahoo.co.jp/help/jp/mail/ma···-40.html

I don't understand what port 110 has to do with POPFile. It is a proxy which uses HTTP to access port 80 to pull the email from the server. You set your local client to use POP3 to access the proxy to pull the email through port 110.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

Yahoo! Mail Plus (U.S.)
Yahoo!7 Mail (Australia)
Yahoo! "me-ru" (Japan)

Re: Mail Changes Coming!

Wed, 21 Nov 2007 17:59:38 EDT

jimkyle : While I've not received any on my own subaccount, my wife has been getting them every other day for the past week or so. I had to change some of her configuration and enable the SpamGuard Plus stuff on the server, for her subaccount, and set it to leave messages on the server in order for her to be able to train the filters to her taste. First thing she did was tag the Yahoo message as spam...

It turned out that she was still receiving non-SSL via port 110 in order to use PopFile as a spam filter, but even after we switched her over to SSL in both directions and cut off all the other accounts from doing any automatic checking, she was still getting the semi-threatening message. It's definitely NOT good PR for AT&T. Brings memories of Ernestine to mind...
--
Jim Kyle

Re: Mail Changes Coming!

Wed, 21 Nov 2007 14:16:27 EDT

NormanS :

said by GB34 :

I've had everything set for SSL connections ever since it was announced that secure connections would be needed for both POP and SMTP connections. However, I have been receiving multiple copies of the following, which is evidently bogus.

What makes you suspect bogosity? As much has you have posted (no trace headers) looks legit to me.

I assume others have been receiving this also.

I have not received any.
--
Norman
~Oh Lord, why have you come
~To Konnyu, with the Lion and the Drum

Re: Mail Changes Coming!

Sun, 18 Nov 2007 19:07:12 EDT

GB34 : I've had everything set for SSL connections ever since it was announced that secure connections would be needed for both POP and SMTP connections. However, I have been receiving multiple copies of the following, which is evidently bogus. I assume others have been receiving this also. I just delete it before it ever gets to my computer.

Dear AT&T Yahoo! Customer:

We noticed that you are accessing email using non-secure settings in your email software.

We would like to ensure that your ATT Yahoo! Member ID, password, and email messages are transmitted securely between your mail software (such as Outlook or Outlook Express) and the ATT Yahoo! Mail servers. In order to meet this need, please enable SSL [links to helpme.att.net/glossary.php#147] via the instructions that are available on the Help site [links to helpme.att.net/article.php?item=10918].

Since multiple email notifications have already been sent out about this, we request that you please make the necessary changes immediately. Remember, you need to make these changes if you want to continue to send/receive email using a mail client.

Thank you for your cooperation,

AT&T Yahoo! Customer Support

Re: Mail Changes Coming!

Sun, 18 Nov 2007 19:05:56 EDT
GB34 : I've had everything set for SSL connections ever since it was announced that secure connections would be needed for both POP and SMTP connections. However, I have been receiving multiple copies of the following, which is evidently bogus. I assume others have been receiving this also. I just delete it before it ever gets to my computer.

Dear AT&T Yahoo! Customer:

We noticed that you are accessing email using non-secure settings in your email software.

We would like to ensure that your ATT Yahoo! Member ID, password, and email messages are transmitted securely between your mail software (such as Outlook or Outlook Express) and the ATT Yahoo! Mail servers. In order to meet this need, please enable SSL [links to helpme.att.net/glossary.php#147] via the instructions that are available on the Help site [links to helpme.att.net/article.php?item=10918].

Since multiple email notifications have already been sent out about this, we request that you please make the necessary changes immediately. Remember, you need to make these changes if you want to continue to send/receive email using a mail client.

Thank you for your cooperation,

AT&T Yahoo! Customer Support

Re: More Info

Wed, 22 Aug 2007 18:40:07 EDT
anon : yeah, ATT mail service is nothing but a joke..using the settings they ask for with Outlook ends up with server timeouts and server interuptions...one thing ATT is good at..and thats 'collecting' and 'cashing' your checks

Re: More Info

Thu, 09 Aug 2007 15:54:01 EDT
anon : It is working from Hotmail. This is driving me nuts! THanks!

Kris

Re: More Info

Thu, 09 Aug 2007 13:16:20 EDT
manfmmd : [OT]
Can you send an email to them via Yahoo, Gmail, or another Internet Based email service?

Re: More Info

Thu, 09 Aug 2007 12:19:32 EDT
anon : One other line of error message

hunt-----.org #5.3.0 smtp;553 5.3.0 nlpi051,DNSBL:To
request removal of, 70.224.64.1, send the complete error message in an
E-mail to removeme@sbc.sbcglobal.net

More Info

Thu, 09 Aug 2007 12:11:22 EDT
anon :

Again, we have SBC internet services for our internet access, but not email. That is through another company hosting our website.

Other accounts

Thu, 09 Aug 2007 12:09:45 EDT
anon : I have a POP3 with our company's internet and I'm getting bounce backs now to any sbclgobal.net account. Do I have to change the settings on my pop3 account that isn't sbc.

The following recipient(s) could not be reached:

Albe---- Goo---e (------e@sbcglobal.net) on 8/8/2007 2:55 PM

The message cannot be delivered due to a configuration
error on the server. Please contact your Administrator.

Re: Mail Changes Coming!

Tue, 31 Jul 2007 21:12:39 EDT
stardotstar : I have made the changes and keep getting the emails! Also I keep getting error messages to enter my password or the server not found box!

Re: Mail Changes Coming!

Thu, 12 Jul 2007 14:23:50 EDT
CaptEd : I am still finding email messages that will bounce from time to time. Most are going through, but I am suspecting that the new "secure" mail servers have some bugs. Anyone work with Orkin?

Re: Mail Changes Coming!

Mon, 02 Jul 2007 19:33:26 EDT
M9878 : I've gotten several of the warnings. Am I special, or what gives?

Re: Mail Changes Coming!

Thu, 07 Jun 2007 20:41:11 EDT
hotlynx2 : My wife told me she couldn't send mail today so I had to change the Smtp.sbcglobal.yahoo.com to Smtp.att.yahoo.com port 25 and it asked for a password and then went thru. She was mad that she had to wait for me to get home to fix it. I will bet support is getting a lot of irate phone calls.I am not going to change anything else until it quits working!
--
Sempron 2800,Biostar M7VIG 400,XP ,60gb Maxtor,512 DDR, ECS N2U400-A,Nforce2 board,XP home SP2 AMD XP3200,250GB Seagate boot,160GB seagate,120GB Seagate 1GB PC3200,ATI XT1300 AGP, SeaMonkey

Re: Mail Changes Coming!

Sat, 26 May 2007 19:59:57 EDT
GB34 :
said by manfmmd :

I'm not sure why people are having issues. I've been running with this setup since I posted the email.

manfmmd I'll have to agree with you. I changed my settings in Thunderbird back in Feb when I first read your post, (A post showing my settings are on the 3rd page of this thread), I have updated to Thunderbird 2.0.0.0 since then, still with no problems.

I'm running:

XP Pro
SS4100 modem
ZoneAlarm firewall
BitDefender anti-virus v10

Re: Mail Changes Coming!

Sat, 26 May 2007 13:41:47 EDT
manfmmd : I'm not sure why people are having issues. I've been running with this setup since I posted the email.

I am running:

Windows Vista Premium (This exact setup worked under XP Home, I imported the settings) - Non-Admin account on both.
Microsoft Outlook 2003
Avast Anti-Virus
Windows Firewall enabled
NAT Router with no port forwarding set up.

edit: The delivery options on the Advanced Tab are discretionary.

Email Accounts Page

General Tab

Outgoing Server Tab

Advanced Tab

Re: Mail Changes Coming!

Sat, 26 May 2007 12:47:07 EDT
lordpuffer : When I receieved the email, I called Tech Support to make sure it was legit. They said it was, so I asked what I should change. The Support guy I spoke with told me to just change the incoming and outgoing server names and NOT to change the port numbers or check SSL. Mine has been working fine. Did I do the right thing?

Re: Mail Changes Coming!

Fri, 25 May 2007 17:30:35 EDT
CaptEd : Just got my email yesterday (5/23), and set my email client (Outlook) to the commanded settings. Things looked OK for a while. Now, today (5/24), I find I can't send messages. I was receiving this a.m., but haven't had anything since, so I suspect I am not getting them either.

Who is the whiz-kid that set this fiasco up? I have been thwarted in concluding some important contracts because of this mess!

Re: Mail Changes Coming!

Fri, 25 May 2007 10:27:17 EDT
manfmmd : I've edited my post. There was no "crudeness" intended. I suppose that you never make a typo.

I've given you options that you can use. Have a good day.

Re: Mail Changes Coming!

Fri, 25 May 2007 10:10:03 EDT
PamelaTS : I didn't say anything about FF. No comment on the un-provoked crudeness

Re: Mail Changes Coming!

Fri, 25 May 2007 09:59:17 EDT
manfmmd : I know how IMAP works. I just switched over to the Yahoo Mail Beta (I usually use Outlook and POP3) and I don't see any advertisements.

If you are using FF, as it would appear since you are using Thunderbird, there is a great ~~ass~~add-on called Ad Block Plus...no more ads.

I'm just trying to give you a solution that will work for you that fits with AT&T's offerings.

another option, do you have another account that has the option of using IMAP, if so, forward your mail to that account using the automatic forwarding.

edit: no offense intended. The "s" IS right next to the "d"

Re: Mail Changes Coming!

Fri, 25 May 2007 09:48:58 EDT
PamelaTS : It would be apparent that you have never used IMAP with say Thunderbird or Outlook.

Using IMAP one doesn't D/l all your messages but there's more much more. With IMAP I can browse and empty the Yahoo Bulk and Trash folders without having to use the web mail interface, yup in Thunderbird. Plus I'm not wanting to see advertisements I pay for my ISP partnered with Yahoo.

Re: Mail Changes Coming!

Thu, 24 May 2007 22:46:43 EDT
manfmmd : So use the Web Interface..

If you are worried about storage space in 2007...well nevermind. :)

Re: Mail Changes Coming!

Thu, 24 May 2007 21:39:01 EDT
PamelaTS : Well I do leave them on the server but why must I D/L the entire message to my PC with a mailbox 2gb or more why not just use their storage not my HD

Re: Mail Changes Coming!

Thu, 24 May 2007 17:15:05 EDT
manfmmd : Why, just choose to leave the messages on the server so you can access them from elsewhere or strictly use the Web Interface. The Yahoo Mail Beta is pretty swift.

Re: Mail Changes Coming!

Thu, 24 May 2007 17:03:14 EDT
PamelaTS : I sure wish they would offer IMAP also

Re: Mail Changes Coming!

Thu, 24 May 2007 15:31:50 EDT
balthus : I use Entourage on my home & work MAC's for email (not Mac MAIL) & POP3 on my Palm to check my ASBC Yahoo mail. This is the follow-up email I received today. Do I have to make these changes. Do I make them on both my MAC's & Treo? What exactly is this change in settings for? Thanks.

===================================================

Time is running out — update your email settings to help us serve you better
Dear AT&T Yahoo! Member,
We recently contacted you about some important security improvements we're making to your AT&T Yahoo! service. These changes will affect members who send or receive email from a desktop or mobile client program, such as Microsoft Outlook, Microsoft Outlook Express, Eudora, Apple Mail, or Thunderbird.
To help us ensure the security of your email, you will need to change the settings on your desktop or mobile email client program. Please choose one of the three options:

Make the Changes Automatically: To automatically make the required changes to Outlook Express, use the AT&T Self Support Tool.

If you already have the AT&T Self Support Tool installed on your computer, simply select Cannot send/receive email from the Self Support Tool Main Interface to run an email settings check. When prompted to change your email settings, select Yes.

If you do not have the AT&T Self Support Tool installed, download it and then follow the instructions above.

Make the Changes Manually: To manually make the required setting changes in Outlook and Outlook Express, please view the detailed instructions here.
Alternatively, you may take the following steps to change the settings on your desktop or mobile email client program:

Open your email client program.
Locate the email account settings for your particular client.
Change the POP server to pop.att.yahoo.com.
Change the SMTP server to smtp.att.yahoo.com.
Check the option labeled Use an encrypted connection (SSL) and change the SMTP port to 465.
Check the option labeled Use an encrypted connection (SSL) and change the POP3 port to 995.
Confirm the above settings then click OK.

Re: Mail Changes Coming!

Tue, 15 May 2007 17:04:48 EDT
Billusa :
said by patent :

In the email I received they give the server listings for the POP first and SMTP second. Then they list the ports in the opposite order (also the opposite order they appear in Outlook). Of course, I then entered the correct numbers, but for the wrong ports and nothing would work. If you are having a problem, check that you have entered the port numbers for the correct ports.

Yea... you would think that somebody would have proof-read that email before sending it. Talk about how to make an easy task even more confusing. :o

They also neglect to tell you where and how to find these settings. They assume everyone knows where.
--
...Bill

Re: Info for Mac Mail users

Mon, 14 May 2007 23:03:53 EDT
ReneeRC :
said by GB34 :

If not, then why should I change my settings if they've been working fine since last February's change?

If it works and it ain't broke, don't fix it!

LOL, exactly! ;)

Re: Mail Changes Coming!

Mon, 14 May 2007 22:22:04 EDT
patent : In the email I received they give the server listings for the POP first and SMTP second. Then they list the ports in the opposite order (also the opposite order they appear in Outlook). Of course, I then entered the correct numbers, but for the wrong ports and nothing would work. If you are having a problem, check that you have entered the port numbers for the correct ports.
--
"The patent system added the fuel of interest to the fire of genius" - A. Lincoln

Re: Info for Mac Mail users

Mon, 14 May 2007 18:07:01 EDT
GB34 :
If not, then why should I change my settings if they've been working fine since last February's change?

If it works and it ain't broke, don't fix it!

Re: Info for Mac Mail users

Mon, 14 May 2007 15:12:03 EDT
ReneeRC :
said by leXicon5 :

Well, just got off the phone with a Mac "experienced" rep.
The smtp.att.yahoo.com should be set to smtpauth.sbcglobal.net port 25 and password as authentication. NO SSL.

Incoming is OK, I've not had an issue with postoffice.swbell.net

I changed my email account (now using smtp.att.yahoo.com/port 465) back in February, and it has been working fine. I use Mac AppleMail. In the quote above, it says Mac users should be using "smtpauth.sbcglobal.net port 25.
Is this for legacy users? If not, then why should I change my settings if they've been working fine since last February's change?

Re: Mail Changes Coming!

Mon, 14 May 2007 14:43:47 EDT
ReneeRC : I just got an email today (5/14) about this email change, lol. I guess they figure, better late than never. Anyway, several times today, I've gotten that pesky pop up box that shows itself when an AT&T Server is thinking about being a problem. I'm not going to check it out any further yet, since it may, hopefully just be some temporary bug that will work its way out in a couple of days. If it starts occuring more frequently, then I'll post more info. ;)

Re: Mail Changes Coming!

Wed, 09 May 2007 14:09:06 EDT
acarlisletx : Works fine with Thunderbird 2.0

Re: Mail Changes - ENTOURAGE & PALM DEVICES

Tue, 08 May 2007 13:30:28 EDT
thelinster : Entourage instructions are on the yahoo page under mail help. What's weird is that you have to set the smtp to override port 465. Doesn't that kind of defeat the purpose? POP seems to work fine with SSL enabled without the override. I did a test mail and got it. But I did a forward to myself and didn't get it yet, so who knows? Any Entourage pros out there?

Mail Changes - ENTOURAGE & PALM DEVICES

Tue, 24 Apr 2007 09:28:52 EDT
balthus : I got the email this morning but I use Entourage for my MAC and also get SBC email via pop3 on my Palm Treo. Do I make the same changes? Thanks.

Re: Mail Changes Coming!

Mon, 02 Apr 2007 19:44:59 EDT
Guff :
said by ehansman :

Apparently all new users will be using the new settings, and old users migrated at some point in the (distant?) future...so I guess it's everyone, but not right away! Now that I see the info on the SMTP authentication only for legacy users I'll swing by there and make the changes. (Thanks!)
For what it's worth.
- erin

If you login into your ~~Ma Bell Dynasty~~ ATT/SBC Yahoo web based mail and look at the pop/smtp settings, it shows the same lineup as the image in my previous post. If the legacy customers aren't suppose to use the new settings yet, maybe ATT should revert those settings on that page.
--
"Gentlemen, prepare to defend yourselves!"

Info for Mac Mail users

Sun, 01 Apr 2007 19:49:52 EDT
leXicon5 : Well, just got off the phone with a Mac "experienced" rep.
The smtp.att.yahoo.com should be set to smtpauth.sbcglobal.net port 25 and password as authentication. NO SSL.

Incoming is OK, I've not had an issue with postoffice.swbell.net
--
"It such a fine line between stupid and clever" - David St.Hubbins That's for the dandy chicken littles.

Re: Mail Changes Coming!

Sun, 01 Apr 2007 19:07:10 EDT
leXicon5 : Well the changes DO NOT WORK for legacy users on Mac Mail.
I'd LOVE to be in the Call Centers right now listening to PISSED off customers who after following every direction to the letter and it STILL doesn't work, wanting to talk to a supervisor. THAT should be a HOOT to listen to right now.
--
"It such a fine line between stupid and clever" - David St.Hubbins That's for the dandy chicken littles.

Re: Mail Changes Coming!

Tue, 27 Mar 2007 22:18:44 EDT
ehansman : Hi BB (and forum),
Thought I would chime in on this one since I sat through an online chat session with AT&T working on this issue with the head boss' home machine using Outlook 2002...the tech told me to put everything back and to leave it alone until 'I had problems sending and receiving.' (Sigh.) Apparently all new users will be using the new settings, and old users migrated at some point in the (distant?) future...so I guess it's everyone, but not right away! Now that I see the info on the SMTP authentication only for legacy users I'll swing by there and make the changes. (Thanks!)
For what it's worth.
- erin
--
Go Kimi Go!

Re: Mail Changes Coming!

Fri, 16 Mar 2007 01:16:31 EDT
buckw1 : Any idea how ssl is added to Exchange in order to have MS Exchange do a PoP3 retrieval? I changed the settings just for grins and it times out with a no response error.

Re: Mail Changes Coming!

Mon, 05 Mar 2007 23:25:21 EDT
konacold : I'm new to dsl and setup outlook 2003 with the new settings. I still can't send mail and have no idea how to fix it. I'm using McAfee. Is the problem my A/V or Outlook?

Re: Mail Changes Coming!

Sun, 04 Mar 2007 01:11:57 EDT
Guff : Changed mine, verified it works for sbcglobal using Vista's Windows Mail.
--
"Gentlemen, prepare to defend yourselves!"

Re: Mail Changes Coming!

Sat, 03 Mar 2007 23:48:32 EDT
David : ok, well that confirms it must be everyone then.

Re: Mail Changes Coming!

Sat, 03 Mar 2007 22:20:55 EDT
Guff : List of domains that have changes.

Re: Mail Changes Coming!

Sat, 03 Mar 2007 18:26:34 EDT
David : I think it only works when you receive the e-mail, if you haven't gotten it yet, it might not be moved to the new server settings.

Re: Mail Changes Coming!

Sat, 03 Mar 2007 12:26:48 EDT
rakstr : I tried the changes and it does not work. I've had my servers set to [pop|smtp].att.yahoo.com for some time.

I tried all permutations of the port, the SSL, ...

The one change that does still work is to leave the port at 110 and select SSL.

I use Seamonkey 1.1.1

Re: Mail Changes Coming!

Sat, 03 Mar 2007 10:42:52 EDT
David : Currently from what I learned is it's supposed to happen via e-mail and it started in sept. of last year.

Re: Mail Changes Coming!

Tue, 27 Feb 2007 17:38:50 EDT
sbkansas : Thanks beach boy,

One other thing that I beleive needs to be answered, how will people be notified of these changes?

It's apparent not too many people have received any kind of notice of these necessary changes.

Any information you can provide regarding this matter will be greatly appreciated.
--
"You will find that the mere resolve not to be useless, and the honest desire to help other people, will, in the quickest and delicatest ways, improve yourself" - John Ruskin

Re: Mail Changes Coming!

Tue, 27 Feb 2007 17:19:41 EDT
David :
said by David :

• legacy users- Do we have to change?

Apparently legacy subscribers will still be able to use their legacy POP servers, and will only have to change their SMTP server to smtpauth.sbcglobal.net (authenticate with their complete email address and password). The message you attached below is intended for Migrated/Non-Legacy members.

said by David :

• Is everyone going to have to change mail servers?

Not necessarily, however everyone will have to use an authenticating SMTP server. Read above.

said by David :

• Some people use a linux extention called “Stunnel” I can’t say I have used it for e-mail but apparently it scans for viruses and such. Are there additional settings needed and such?

Any settings that we would have access to and/or be able to provide are platform-independent. Stunnel falls under the GNU license, and appears to offer precompiled binaries for Windows only (‘nix users will have to compile it from source, in other words). This also means that any issues that a ‘nix user, who is capable of compiling a program from source (or, at the very least, pointing yum or whatever RPM manager to the appropriate repository), runs into will probably be far beyond the humble scope of ATTIS Customer Care to resolve.

As with most open source applications, the user’s best resource for support will probably be searching message boards (via Google, etc) or from the project homepage (in this case, stunnel.org). ATTIS Customer Care does not support Unix-based operating systems (with the sole exception of Mac OS X, and even then we don’t support the bash commands used in Darwin).

said by David :

More information: Some A/V scanners can't work with SSL connections. Stunnel acts as a front end for them to encrypt the email/passwords and make the SSL connection. It then passes the email to the A/V scanner which will then pass it to the email client.

Sounds to me as though the standard port settings etc. should work fine, here.

said by David :

Any authentication details that Stunnel would need such as the certificates the email server will present for verification to Stunnel would be useful.

I’m not sure where I would be able to obtain this information. In any event, from looking over the project page at stunnel.org, it doesn’t appear as though they will need to input any specific certificate information beforehand, provided that they have it configured to listen properly

said by David :

• Will Mail through this link will still be spam and malware filtered?

Of course. Aside from the few obvious changes, mail functionality should be identical. If I find anything to the contrary, I’ll let you know.

--
If you have a topic in the direct forum please reply to it or a post of mine, I get a notification when you do this.
Koetting Ford, Granite City, illinois... YOU'RE FIRED!!

Re: Mail Changes Coming!

Sat, 24 Feb 2007 18:40:23 EDT
leXicon5 :
said by nwrickert :

Are you an SBC/ATT/Yahoo user? Or are you an old swbell user who never did the Yahoo change?

If the latter, these email changes are not for you.

Hope you're right cause it rejects my password when I make the change.
This should REALLY go over well with support. Hold times should skyrocket.
After a week of that, they'll throw in the towel and set everything BACK.
--
iPod #2 on Amazon best sellers list, Zune not even in the top 100....

Re: Mail Changes Coming!

Thu, 22 Feb 2007 22:26:26 EDT
David : I have the questions answered and I will post them tomorrow. I went to the MSFT conference at the adams mark hotel today downtown.

But hey as least I got my free copy of Office 07

Re: Mail Changes Coming!

Thu, 22 Feb 2007 15:08:22 EDT
Billusa : Thanks... never received that email, though. But, the last SBC Yahoo email I got was in my Web Spam folder, which I only rarely check. So it's often emptied without my seeing it.

And the accepted way to debug any send/receive issues with POP3/SMTP mail is to turn off and leave off email A/V scanning to start with. As has been mentioned above a few times, it is just extra "proxy" work for the email client and the file system's A/V will catch it.

Various A/V products are completely screwing up Vista Windows Mail in a lot of cases right now. Turning their email scanning off fixes it.
--
...Bill

Re: Mail Changes Coming!

Tue, 20 Feb 2007 20:37:55 EDT
David : Just an update I e-mailed the following off.

There’s a few questions the forum has in regards to the new mail coming in now

• legacy users- Do we have to change?
• Is everyone going to have to change mail servers?
• Some people use a linux extention called “Stunnel” I can’t say I have used it for e-mail but apparently it scans for viruses and such. Are there additional settings needed and such?
• Will Mail through this link will still be spam and malware filtered?
--
If you have a topic in the direct forum please reply to it or a post of mine, I get a notification when you do this.
Koetting Ford, Granite City, illinois... YOU'RE FIRED!!

Re: Mail Changes Coming!

Sat, 17 Feb 2007 18:49:28 EDT
anon : One point that should be understood is that this change only encrypts the email in transmission, protecting your ID and password, which is useful on wireless networks. Upon arrival at Yahoo, the email is decrypted, and is likely passed along to the destination unencrypted. Email is store-n-forward technology, which means that in many cases, it is temporarily stored on a disk drive. Do you know your ISPs archival policy? In order to keep the content private, it would be necessary to encrypt the email before it is sent. Otherwise, it is potentially like a postcard, with contents available to anyone with access. Here's a link on the privacy issue.
»www.pbs.org/now/shows/307/index.html

Re: Mail Changes Coming!

Sat, 17 Feb 2007 14:25:32 EDT
Flippant : Another question. Mail through this link will still be spam and malware filtered?

Re: Mail Changes Coming!

Sat, 17 Feb 2007 09:38:44 EDT
koma3504 : What about all the people that do not know how to set up Stunnel??? Scanning email as it downloads is vital to Security and the spreading of viruses and the slowdown of botnets.

Re: Mail Changes Coming!

Fri, 16 Feb 2007 21:34:28 EDT
David : Ok so so far the two questions I am submitting will be..

1.) legacy users- Do we have to change?

2.) Is everyone going to have to change mail servers?

John are you wanting specifics on protocol for the e-mail?

Re: Mail Changes Coming!

Thu, 15 Feb 2007 22:42:25 EDT
d_l : LOL. You are really straddling the fence there. I think you are a migrated user because you are using a yahoo server. I believe only migrated users can use those, but in the whacky world of AT&T email servers there are exceptions.

Re: Mail Changes Coming!

Thu, 15 Feb 2007 17:55:30 EDT
ccenters : I just looked again at my present settings and the POP is pop.swbell.yahoo.com and my SMTP is mail.swbell.net.

Looks like a mixed bag but it has been working since forever..

Does the "yahoo" in the POP mean I'm using yahoo mail server for POP but swbell.net for SMTP ?

Re: Mail Changes Coming!

Thu, 15 Feb 2007 12:27:58 EDT
d_l : That's a $64K question. If you were using email servers without "yahoo" in the name, then you are probably a legacy (unmigrated) user. The "@domaimname" aspect is irrelevant because the old account users retained their "@domainnames" after migrating to the Yahoo servers.

There have been no email or posted announcements informing the legacy users that they will also have to switch to new secure servers. Of course, the email announcements to the AT&T-Yahoo customers haven't been common place either, so the absence of notification to the legacy customers isn't conclusive.

Re: Mail Changes Coming!

Thu, 15 Feb 2007 12:10:59 EDT
ccenters : I'm an ole fart still using swbell.net mail or at least I think I am. My email addy is name@swbell.net...

Hope you are correct and I'm still swbell.net cause the changes will not work on my computer. Put back the old ports / nfo and it works.

Will I be forced to change??

Re: Mail Changes Coming!

Thu, 15 Feb 2007 00:46:59 EDT
nwrickert : Are you an SBC/ATT/Yahoo user? Or are you an old swbell user who never did the Yahoo change?

If the latter, these email changes are not for you.
--
AT&T dsl; Westell 2200 modem/router; SuSE 10.1; firefox 1.5.0.9

Re: Mail Changes Coming!

Thu, 15 Feb 2007 00:42:17 EDT
ccenters : d_l

I'm using Netscape 7.02 [have been for years now] and have no email scanning going on. So there must be a problem somewhere else that I'm overlooking.. I use Mailwasher but I assume it only "looks at" the mail on the server and only after I start it each time.. I know I would have to change the setting in Washer too but I wouldn't think it would stop Netscape from working on send and receive of mail if it's not running.

Any other suggestions ?

Re: Mail Changes Coming!

Wed, 14 Feb 2007 20:28:39 EDT
d_l : The new servers and SSL would work on Netscape versions newer than 6.2. A reason it might not work is if you are scanning email with an antivirus program such as Norton A/V.

Re: Mail Changes Coming!

Wed, 14 Feb 2007 20:18:02 EDT
ccenters : I made the changes in my email client [ Netscape] and I can't send or receive mail.. Is this supposed to be changed in Netscape setup or is it not for Netscape clients ?

Re: Mail Changes Coming!

Tue, 13 Feb 2007 18:50:15 EDT
Flippant : I got an email with a blurb about Secure Email service, in which this would be part of but it sounded more like a pay service. I sure have not received a notice that this must be done. I would think if it were a requirement that there would be many support calls when the non SSL email stopped. Personally though I think I would rather use an SSL connection.

Re: Mail Changes Coming!

Tue, 13 Feb 2007 17:21:29 EDT
jonrkc : I checked my bulk mail folder on Yahoo! web mail and there was nothing there from AT&T. And I look at all my junk mail in my client just in case something got there by error. Nothing...

Re: Mail Changes Coming!

Tue, 13 Feb 2007 17:04:27 EDT
d_l : I'd dare say that more people around here haven't received the notice than have. Something is fouled up somewhere with this mass mailing.

Re: Mail Changes Coming!

Tue, 13 Feb 2007 16:57:51 EDT
manfmmd :
said by jonrkc :

I still wonder why some of us didn't receive that email about the changes. I'm lucky I came here to see if there was a post about slow, slow KC email the other day. That's how I found out about this.

I'm wondering if it didn't end up in a junk mail folder somewhere for a lot of users.
--
huh? | AIM | Speaker Pelosi?!?...OH THE HUMANITY!

Re: Mail Changes Coming!

Tue, 13 Feb 2007 16:51:15 EDT
jonrkc : "Since we are in essence demanding an SSL connection via the EMail application, I don't believe that it can communicate unencrypted since there are no fallback settings."

That makes sense, 'cause if AT&T wants traffic encrypted it would be self-defeating to say, "Oh, go ahead and don't use encryption."

I'll keep things as they are--my system appears safe enough without the firewall, according to test; come March 30 I'll know if it all works right.

I still wonder why some of us didn't receive that email about the changes. I'm lucky I came here to see if there was a post about slow, slow KC email the other day. That's how I found out about this.

Re: Mail Changes Coming!

Tue, 13 Feb 2007 16:47:31 EDT
jonrkc : Edited to delete: accidental double post. JRR

Re: Mail Changes Coming!

Tue, 13 Feb 2007 16:21:07 EDT
manfmmd : Since we are in essence demanding an SSL connection via the EMail application, I don't believe that it can communicate unencrypted since there are no fallback settings.
--
huh? | AIM | Speaker Pelosi?!?...OH THE HUMANITY!

Re: Mail Changes Coming!

Tue, 13 Feb 2007 15:59:37 EDT
jonrkc : All right, I hope this will be my last post in this thread as I feel I've overused it, and I'm sorry if I have.

Today I finally just disabled Guarddog (iptables graphic interface for management) and reinstalled iptables, but then all my ports were still stealthed. So as a last resort I uninstalled iptables, too, rebooted, and now I can communicate with SMTP using port 465 and SSL. And I was already able to use port 995 for POP3.

I have no sure way to tell if messages are being encrypted, but I guess they are, otherwise those changes mandated by AT&T (which I haven't received in email yet, either!) would not have been spelled out.

One thing that puzzles me is that all my ports are still shown as closed--three of them stealthed apparently by AT&T--but now I have no iptables, and hence no firewall.

Ubuntu Linux is shipped with all ports closed by default for safety, but I figured getting rid of iptables, the firewall mechanism for Ubuntu, would change that. I'm glad it didn't, but puzzled.

Finally, can somebody suggest a surefire way to tell if communications are encrypted, and encrypted in both directions? That would be useful to Windows, Mac, Linux, and all other OS users in this situation.

Re: Mail Changes Coming!

Mon, 12 Feb 2007 23:54:56 EDT
dleehend : beach boy,

Is everyone going to have to change mail servers?

I am still on the sbcglobal.net servers and have not received any message about the need for changes.

Actually, I never even "officially" did the change to sbc/yahoo. :-)
--
Live carefully today! Tonight you may answer for your actions.

Re: Mail Changes Coming!

Mon, 12 Feb 2007 22:21:32 EDT
jonrkc : Yes, I had encryption using the stunnel utility recommended above in the thread, yesterday, on SMTP. I don't think I had it on POP3. Anyway, today I have it on POP3 but not on SMTP, and I've tried virtually every combination of port numbers and of SSL, TLS, TLS if available, and "None" for authentication. Yesterday encryption via stunnel worked with "TLS if available," which is the same as "None" in this case since AT&T doesn't offer TLS.

Frankly so tired of thinking about it right now I need to do something else--esp. since I'm trying to fix major computer problems unrelated to that, such as computer not booting because of apparently corrupted kernel. Finally went back to a prior version and it worked fine. How that happened, I don't know....

All day wasted on these things. Thanks for your willingness to help; I'll try to provide more useful information tomorrow or whenever I possibly can. I've also had some private message help from a forum member. Since my problem is very specific it probably really doesn't belong in this thread and private messages are more appropriate--unless I started my own thread... Oh, well. Thanks.

Re: Mail Changes Coming!

Mon, 12 Feb 2007 21:57:20 EDT
David : So if I read this correct you are having a problem with the encryption? or no? I admit I am no e-mail guru (have a hard enough time checking mine sometimes!)

I can get some questions answered if that makes sense or as least point in the right direction..

Re: Mail Changes Coming!

Mon, 12 Feb 2007 21:39:40 EDT
jonrkc : I don't think I'm first, but I'll jump the line.

I got SMTP encrypted y'day using stunnel and NO authentication preference in Thunderbird (no TSL, no SSL). Today I get POP3 encrypted--but not SMTP, no matter what I've tried. I don't see anything changed, though I've changed a lot during more than two hours of experiments today.

If I knew how to wrangle IPTables I could probably force encrypted SSL, but they are beyond me; I use Guarddog interface for managing the firewall. And it will not allow SMTP over SSL, considering it a deprecated mode. It will allow over TLS, but AT&T presumably doesn't (I get message that it doesn't connect via TLS).

So. I didn't intend to turn this into a one-issue (Linux) thread. I know others are having problems even though using Windows, and some have solved all their problems, and some haven't...

Re: Mail Changes Coming!

Mon, 12 Feb 2007 20:49:54 EDT
David : Sorry for the long reply, I was asked to come over here and get some questions answered...

"So what's up and who's first?" *

*Note: I used to say this when I walked into a pool hall one night with a beer in one hand and a stick in the other!

--
If you have a topic in the direct forum please reply to it or a post of mine, I get a notification when you do this.
Koetting Ford, Granite City, illinois... YOU'RE FIRED!!

Re: Mail Changes Coming!

Sat, 10 Feb 2007 02:05:48 EDT
jonrkc : (Sorry about saying TSL earlier instead of TLS. There's enough confusion here already!) :)

That's interesting that TLS was used in your experiment. It won't work with my setup, at least now it won't.

I didn't find stunnel for Linux yesterday searching, but I may have overlooked it. If its setup is anything like the other utility I found (sorry I can't remember its name), it would be beyond my capability anyway.

I'll keep searching, and if I find anything a non-expert user can install, I'll post about it.

Thanks for all your time and attempts to help me!

Re: Mail Changes Coming!

Sat, 10 Feb 2007 00:44:50 EDT
anon : I thought stunnel ran on linux. From what I gathered, linux was the primary system, and a port was made to windows as an afterthought. Don't mistake me as an expert on SSL, but when doing a dump using openssl, I saw some mention of TLS1

New, TLSv1/SSLv3, Cipher is AES256-SHA
Server public key is 1024 bit
Compression: NONE
Expansion: NONE
SSL-Session:
Protocol : TLSv1
Cipher : AES256-SHA

Anyhow, I'll attach the certificates. One shouldn't accept certificates without verification, but here, there is peer review. The ATTpop and ATTsmtp certificates were made as follows. First, the Equifax root certificate was exported in IE by going to tools >internet options > content > certificates > root and selecting the Equifax Secure Certificate Authority. I then exported the certificate in Base64 format. Then, I used the openssl "s_client -connect pop.att.yahoo.com:995" command to retrieve the certificate for the server. Same approach for the smtp server. Then the root certificate and the server certificate were concatenated in the certificate files that are zipped up. I also include a stunnel sample configuration file. I tried stunnel with just the server certificate without the root, no luck. Then I tried the root, and no server certificate, no luck. Needs both.

IP addresses/ports for the accept option were configured to comply with some firewall rules I have. Those could be set to anything you like.
ATTcer.zip 3,403 bytes

Re: Mail Changes Coming!

Fri, 09 Feb 2007 22:28:33 EDT
jonrkc : "I'd like to take that bet. I set up stunnel and dumped the IE certificate store to a file for stunnel, and made a test to the pop port at 995 and the smtp port at 465. Stunnel log shows nice AES encryption at 256 bits. (IP address obfuscated.)"

I wish I could do that. The only utility for Linux that I found, that carries out a function like stunnel, is so complicated to set up that it would take me hours and hours and I still would probably fail.

Too bad ATT/Yahoo are not using TSL. I'll either live without encryption or wait for some miracle to come along, I guess. I seldom send anything earth-shakingly secret in my email anyway. Now I'll have all the more reason not to.

Of course I could make agreements with all my correspondents to use GPG (open-source equivalent of Pretty Good Privacy) to encrypt and decrypt our emails. Not very practical!

Re: Mail Changes Coming!

Fri, 09 Feb 2007 20:56:19 EDT
anon : "Even so, I got connected. But I'll bet there's no encryption involved."

I'd like to take that bet. I set up stunnel and dumped the IE certificate store to a file for stunnel, and made a test to the pop port at 995 and the smtp port at 465. Stunnel log shows nice AES encryption at 256 bits. (IP address obfuscated.)

: attsmtp accepted connection from 127.0.0.102:2080
: attsmtp connected remote server from 76.aaa.bb.ccc:2081
: VERIFY OK: depth=1, /C=US/O=Equifax/OU=Equifax Secure Certificate Authority
2007.02.09 18:43:55 LOG5[2152:1672]: VERIFY OK: depth=0, /C=US/ST=California/L=Santa Clara/O=Yahoo! Inc./OU=Yahoo/CN=smtp.att.yahoo.com
: SSL connected: new session negotiated
: Negotiated ciphers: AES256-SHA SSLv3 Kx=RSA Au=RSA Enc=AES(256) Mac=SHA1
: SSL socket closed on SSL_shutdown
: Connection closed: 1316 bytes sent to SSL, 297 bytes sent to socket

: attpop accepted connection from 127.0.0.101:2082
: attpop connected remote server from 76.aaa.bb.ccc:2083
: VERIFY OK: depth=1, /C=US/O=Equifax/OU=Equifax Secure Certificate Authority
2007.02.09 18:44:16 LOG5[2152:1836]: VERIFY OK: depth=0, /C=US/ST=California/L=Santa Clara/O=Yahoo! Inc./OU=Yahoo/CN=pop.att.yahoo.com
: SSL connected: new session negotiated
: Negotiated ciphers: AES256-SHA SSLv3 Kx=RSA Au=RSA Enc=AES(256) Mac=SHA1
: SSL_shutdown successfully sent close_notify
: Connection closed: 82 bytes sent to SSL, 3425 bytes sent to socket

Re: Mail Changes Coming!

Fri, 09 Feb 2007 14:16:01 EDT
sblake : Do these instructions apply to those who are still using the swbell.net domain name? I haven't received anything about this

Re: Mail Changes Coming!

Thu, 08 Feb 2007 17:52:54 EDT
GB34 : Sorry I haven't checked in until now. Here are my settings for Incoming and Outgoing Server Settings.

Hope these help. I x'ed out the username portion for obvious reasons. Of course you would need to add your own username in place of the x's

GB34

TB Incoming Settings

TB Outgoing Settings

Re: Mail Changes Coming!

Thu, 08 Feb 2007 17:11:00 EDT
jonrkc : "...wait and see. However it's my understanding (which may be quite wrong) that port 465 accepts ONLY the TLS protocol, so I'd expect it to keep working..."
That's what I thought at first, too, but then it dawned on me that "TLS if available" working and "TLS" not working probably means that TLS is not available.

Even so, I got connected. But I'll bet there's no encryption involved.

Re: Mail Changes Coming!

Thu, 08 Feb 2007 15:17:09 EDT
jimkyle : Apparently STARTTLS is different from TLS or SSL, but I didn't pay much attention to the specific differences. I think the only way to tell if the "TLS if available" setting will continue to work will be to wait and see. However it's my understanding (which may be quite wrong) that port 465 accepts ONLY the TLS protocol, so I'd expect it to keep working...

Re: Mail Changes Coming!

Thu, 08 Feb 2007 12:56:08 EDT
jonrkc : "The TLS over port 25 is more often called STARTTLS..."

Hmm! I tried this over port 465 and could not connect, got error message that SBC does not offer STARTTLS in its EHLO response.

Then I tried the option of over "TLS if available," and was able to connect via port 465.

Do you think this will continue to work? I assume what I sent was unencrypted, if TLS actually isn't available, as the error message leads me to believe.

Re: Mail Changes Coming!

Thu, 08 Feb 2007 12:46:44 EDT
jonrkc : I tried the port 465 thing with TLS last night and it didn't work, but I'll give it a go again. Maybe I had something set up wrong.

I've been using smtpauth out of port 587 for about two or three years now; however I did get SBCGlobal to unblock my port 25 (big to-do over that issue a couple of years ago, which is when I changed to smtpauth).

If you think of other suggestions, keep them coming! I appreciate your help.

Re: Mail Changes Coming!

Thu, 08 Feb 2007 12:34:20 EDT
jimkyle : Try the TLS setting but change the port from 25, before going the stunnel route. I did a bit of research to find out that TLS is actually SSL with a new name. It has some slight extensions over the original SSL, but I'm connecting just fine with TLS on port 465 selected in my mail client!

The TLS over port 25 is more often called STARTTLS...

Re: Mail Changes Coming!

Thu, 08 Feb 2007 12:15:06 EDT
jonrkc : Thanks, d_l, I'll give stunnel a look.

Meanwhile I posted a plea for help in linuxquestions.org's security forum. I'll probably get some answers, if not a solution.

I found out that the Guarddog people consider SMTP over SSL deprecated. They think SMTP using TSL and port 25 should be used.

Great. I'll have them tell SBCGlobal/ATT/Yahoo that! :huh:

Re: Mail Changes Coming!

Thu, 08 Feb 2007 12:01:16 EDT
d_l : If you understand Linux (I don't), then you might give Stunnel a look see. It acts as a universal SSL wrapper that "can allow you to secure non-SSL aware daemons and protocols (like POP, IMAP, LDAP, etc) by having Stunnel provide the encryption, requiring no changes to the daemon's code".

I've use the Windows Stunnel binaries for years to provide SSL encryption and they have been flawless and transparent.

Re: Mail Changes Coming!

Thu, 08 Feb 2007 11:50:09 EDT
jonrkc : Looks like the problem with my setup is that Guarddog does not have an option for SMTP via SSL. It has POP3 via SSL, and of course I have that enabled. But there's no way to enable SMTP over SSL. That is a serious problem for me... I don't want to operate without a firewall.

Any suggestion what I can do other than search via Google and post on linuxquestions.org?

Re: Mail Changes Coming!

Thu, 08 Feb 2007 11:41:38 EDT
jonrkc : I just got through testing again and there was an attempt to connect but it failed and timed out like last night. I captured the traffic stream using Ethereal and as usual failed to understand most of it, but there was a lot there about incorrect checksums and failed ACK's. There was no reference at all to smtp.att.yahoo.com, only to the pop3 server.

??

Next step: disable firewall and try again.

EDIT a few minutes later: That did it. It's something with the firewall. I can fix that eventually. :)

Thanks for the suggestions and problem descriptions, everybody.

Re: Mail Changes Coming!

Thu, 08 Feb 2007 11:28:11 EDT
jimkyle : Hey, iptables isn't nearly as hard to learn as the how-tos would make you think! On my LAN here I'm running Mandrake 8.1 on a very old Pentium 2 MMX 200-MHz box to serve as my router and firewall, and it runs a very tweaked set of iptables rules (based on Bastille) to lock everything down from the outside but nothing outbound gets trapped. For outbound security I run Kerio/Tiny 2.14 on each of the Win98 boxes.

The problems were on a freestanding XP box, and it's using Tiny 2.15 also for both directions. Somehow the rules for both Outlook and Outlook Express were set to deny all traffic, and that was the major problem. The one with POPFile did not show up until the firewall was corrected...

Re: Mail Changes Coming!

Thu, 08 Feb 2007 00:37:30 EDT
jonrkc : Wow... What fun I have to look forward to, eh?

I'm using Thunderbird on an Ubuntu Linux system, with no real-time antivirus checking in either direction. I checked my firewall settings (using Guarddog firewall management, as I am not going to spend the last of my few remaining days learning to manipulate IPTables by hand), and even with the firewall specifically set to allow port 465 (which it needn't even be, I believe), it wouldn't work.

So I'll try again now and then, and when I have a bit more time I'll try with the firewall disabled--I don't like to do that; Linux despite stupid comments to the contrary is NOT invulnerable to attacks.

Thanks for describing what you had to do. I may have to refer back to it for clues in this process.

I wonder why so many of us did not receive the email about the changes?

Re: Mail Changes Coming!

Thu, 08 Feb 2007 00:12:52 EDT
manfmmd : I'm not sure what to tell you. I just tried and successfully sent an email using the above instructions. Perhaps GB34 can post a screenshot of his/her config from Thunderbird.
--
huh? | AIM | Speaker Pelosi?!?...OH THE HUMANITY!

Re: Mail Changes Coming!

Thu, 08 Feb 2007 00:12:52 EDT
jimkyle : Are you using an external spam filter and/or an antivirus package that checks outgoing Email messages? I ran into serious problems trying to change my wife's system to the new servers although my own system changed over like clockwork.

Her system uses POPFile for spam filtering, and Avast Home (free) for virus scanning. I wound up killing the mail scanning modules of Avast, and upgrading her copy of POPFile to the newest version (0.22.4) plus grabbing the "addssl.zip" wizard to fully implement SSL compatibility.

With those modifications her system now sends and receives on the new servers, but getting to this point took most of two days and at one point every test of the new server setup disabled POPFile completely...

Re: Mail Changes Coming!

Wed, 07 Feb 2007 23:50:25 EDT
jonrkc : Thanks, nwrickert. Moments before your reply, I found my old settings by searching in a backup I'd made yesterday. (It pays to back up!) (And to write things down before changing them.)

I changed back to smtpauth.sbcglobal.net and now I can send successfully. I am receiving with the new settings. I guess I'll try the new smtp settings now and then till they work, assuming the system is in the process of changeover and I was just unlucky with my timing. :huh:

Re: Mail Changes Coming!

Wed, 07 Feb 2007 23:39:12 EDT
nwrickert :
... and smtpauth.sbcglobal.yahoo.com ...
For the old settings, use either "stmp.sbcglobal.yahoo.com" or "smtpauth.sbcglobal.net". You seem to have a name half way between the two, and that is causing your connection failure.

Re: Mail Changes Coming!

Wed, 07 Feb 2007 23:31:00 EDT
jonrkc : I'm in Kansas City. I followed the instructions (by the way, I too did not receive any email with them, but then I think ATT fails to deliver approx. 1/3 of my email).

I changed both pop3 and smtp settings, and I can receive mail with the new settings, but not send. It just times out (no specific error message, just the one saying to check settings).

My smtp settings read port 465 and use SSL and smtp.att.yahoo.com as in these instructions. No go.

I tried changing back to port 587 and "use TSL if available" and smtpauth.sbcglobal.yahoo.com and that gave me an error message "Unable to connect." I had been using it fine (though very slow) earlier in the evening, in fact sent these very instructions to a friend moments before changing my own settings.

So now I cannot send email unless I go to webmail, which I assume will still work.

Any suggestions? Am I missing something?

Edit: I should add that I use Thunderbird email client. I came here to the forum because email was extremely slow and I wanted to see if there was trouble in Kansas City again. Then I found these instructions.

Re: Mail Changes Coming!

Tue, 06 Feb 2007 23:07:48 EDT
ReneeRC : Thanks. I've changed the stuff, and my Apple Mail is working just fine now. :)

Re: Mail Changes Coming!

Tue, 06 Feb 2007 22:18:35 EDT
jimkyle : And I've not received any official Email -- and I hardly ever use the web interface. Nevertheless I think that changing over to SSL is probably a good thing to do. Now if I can just figure out how to configure POPFILE and Avast Home to work with it. My own installation is working nicely, but my wife prefers Outlook Express, POPFILE, and Avast -- and that combination won't quite cut it with SSL/TLS at the moment because of the encryption.

One solution would be to remove the "internet mail scanner" module from Avast and let the "resident shield" do all the work, and that may be what I do...

Re: Mail Changes Coming!

Tue, 06 Feb 2007 22:04:04 EDT
nwrickert : Yes, the POP3 port is the port that is normally 110.

No, I haven't received mail about this yet either. I'm beginning to think I won't. Maybe they aren't mailing to people who mainly use the webmail interface.

Re: Mail Changes Coming!

Tue, 06 Feb 2007 21:51:26 EDT
ReneeRC : I have Apple Mail and I was able to do all the stuff you listed EXCEPT that I don't know where/how to do item #6:

6. Change the POP3 port to 995 and check the option labeled Use an encrypted connection (SSL).

POP3 port? Is this the port that is 110 right now? If it isn't, then how do I change this POP3 port? I can't find it.

Thanks.

Oh, and I didn't get an email saying anything about this either. ;)

Re: Mail Changes Coming!

Mon, 05 Feb 2007 20:38:51 EDT
d_l : The directions/instructions for this SSL change over do not HAVE to be restricted just email client POP and SMTP settings. There CAN be alternative setting changes listed for other situations. Geez, Worldnet has an incredible array of elaborate set up instructions for almost every possible situation. AT&T (SBC) owns Worldnet now and wouldn't have to start their instruction set from scratch.

That is unless Yahoo is writing these help instructions. Then maybe there is a reason for the limits of these help pages. :uhh:

Re: Mail Changes Coming!

Mon, 05 Feb 2007 20:29:52 EDT
FriscoTX : KC_User, thanks for the solution. Thats what I get for skimming the post and just remembering the port numbers.

Re: Mail Changes Coming!

Mon, 05 Feb 2007 19:51:57 EDT
Flippant :
said by jimkyle :

FWIW I switched to the SSL ports a couple of days ago, using "The Bat!" as my mail client (it calls the ports TLS rather than SSL) and AVG Pro 7.5's plug-in for TB! as an active scanner.
Apparently it also works in AVG free as well... »forum.grisoft.cz/freeforum/read.···22,64298

Re: Mail Changes Coming!

Mon, 05 Feb 2007 18:26:30 EDT
anon : "I did try it and I receive an warning on the Security Cert. name does not match."

Change the server name to get rid of the "sbcblobal" and add "att". EG: pop.att.yahoo.com & smtp.att.yahoo.com.

As far as adding ssl to email retrieval and sending is concerned, one benefit would be secure email when using a public wi-fi.

Re: Mail Changes Coming!

Mon, 05 Feb 2007 16:54:56 EDT
koma3504 : Well this is good to know. But how many free A/V soulutions will let you do this. Which alot of people use the free stuff.

It would also be good to know which of all the A/V programs free and paid will let you do ssl pop scanning.

Like I rember back when worldnet account was the only email i had the A/V that i currantly use was able to scan all incoming email. Then all of a sudden it quit working.

If i rember correctly it was using 127.0.0.1 localhost to do this.
I have spent alot of time changing stuff from my worlnett account to be sent to my Att/sbc account for that reason and now it looks like i will have to be going though that pianfull proccess agian.
--
† Koma †
If YOu Don't Think It's Possable!! It's Acually A Reality!! The best way to predict the future is to invent it. Alan Kay!!
Ya Don't Know The signal Till Ya Ride It!!
Voice Break's There's Trouble!!

Re: Mail Changes Coming!

Mon, 05 Feb 2007 16:40:27 EDT
jimkyle : FWIW I switched to the SSL ports a couple of days ago, using "The Bat!" as my mail client (it calls the ports TLS rather than SSL) and AVG Pro 7.5's plug-in for TB! as an active scanner.

It's still detecting "greeting card.exe" as being suspicious, and quarantining it. Apparently at least one AV package is doing things right (perhaps it's hooking into the mail client AFTER the packets have been decrypted, rather than tapping into the stream between mail client and WAN)...

Re: Mail Changes Coming!

Mon, 05 Feb 2007 16:06:03 EDT
DFWDraco76 : I went ahead and switched mine too and it's working fine - this is in Outlook 2003.

What mail program are you using that you see this warning?
--
my blog: »dfwdraco76.blogspot.com
my website: »www.thelifeofbrian.info/

Re: Mail Changes Coming!

Mon, 05 Feb 2007 15:54:58 EDT
FriscoTX : I did not receive this notice either.

I did try it and I receive an warning on the Security Cert. name does not match.

Re: Mail Changes Coming!

Mon, 05 Feb 2007 15:31:36 EDT
DFWDraco76 : interesting, I never got notice of this... I still have @sbcglobal.net addresses too - any idea of these will eventually change?
--
my blog: »dfwdraco76.blogspot.com
my website: »www.thelifeofbrian.info/

Re: Mail Changes Coming!

Mon, 05 Feb 2007 15:21:12 EDT
nwrickert : AT&T tells its customers to set their email client POP settings to use port 995 with SSL.

The customer is expected to read that as "don't touch the email client POP settings, but go into your A/V settings, and set port 995 and SSL for POP in your A/V."

Sorry, but non-technical users will find that quite confusing.

Re: Mail Changes Coming!

Mon, 05 Feb 2007 15:12:52 EDT
d_l : I implied that the A/V would handle the SSL encryption when I blamed the programmers for not permitting the use of 995 and SSL. The A/V program would make the SSL connection on 995, do its checking, and pipe the email to 127.0.0.1 or localhost. The A/V programs are doing this now only connecting unsecured on port 110 instead of 995.

The email client would then simply connect to 127.0.0.1 or localhost using port 110 instead of directly to the AT&T POP server. It really isn't that complicated! Especially if the A/V programmers would finally get their programs up-to-date!

Re: Mail Changes Coming!

Mon, 05 Feb 2007 14:57:30 EDT
koma3504 :
said by nwrickert :

Some malaware is desighned when clicked on to disable your A/V.
The malware still has to be loaded into memory before it can disable A/V.

The only way clicking on malware can disable properly functioning A/V, is if that malware is not currently recognized in the A/V virus tables. In such a case, incoming mail scanning provides no additional benefit, since the malware would not be recognized there either.

I'll have to disagree with this I have seen where the a/v did catch it but it still disabled the A/V and the task manager and regedit.

It's better to catch it as its downloading so it will disable access or Quarantine/Strip the file out of the email.
Giving the User the protection of not even being able to click on it.
--
† Koma †
If YOu Don't Think It's Possable!! It's Acually A Reality!! The best way to predict the future is to invent it. Alan Kay!!
Ya Don't Know The signal Till Ya Ride It!!
Voice Break's There's Trouble!!

Re: Mail Changes Coming!

Mon, 05 Feb 2007 14:49:13 EDT
nwrickert :
Some malaware is desighned when clicked on to disable your A/V.
The malware still has to be loaded into memory before it can disable A/V.

The only way clicking on malware can disable properly functioning A/V, is if that malware is not currently recognized in the A/V virus tables. In such a case, incoming mail scanning provides no additional benefit, since the malware would not be recognized there either.

Re: Mail Changes Coming!

Mon, 05 Feb 2007 14:44:11 EDT
nwrickert :
Frankly the problem falls back on the A/V programmers for not permitting the use of 995 and SSL for POP3 connections!
I'll have to disagree with that.

The way A/V does the email scanning, is to setup a proxy and redirect the mail through the proxy. That allows it to view the data stream from the email client.

The trouble with port 995 and SSL, is that the A/V would only see an encrypted data stream. Thus it would be unable to detect any virus because the encryption would hide it.

It would require the email client not use encryption, and then have the A/V proxy handle the SSL encryption. Setting it up that way is a bit complex for the average user, even if the A/V provides such encryption support.

Simplest is to just turn off the incoming email scanning, and let the A/V catch the virus if there is an attempt to load it into memory.

Re: Mail Changes Coming!

Mon, 05 Feb 2007 14:30:02 EDT
koma3504 : Yes your probally correct on it falls back to the A/V Venders.
But that doesnt mean Att should make the internet less secure for all of us.

Those same people will call support on how to change the ports and were right back at Sqare one. They will be infecting countless other computers on a daily bases

Re: Mail Changes Coming!

Mon, 05 Feb 2007 14:25:17 EDT
d_l : Well hey, if there is really a hard and fast deadline of March 30, 2007, and some people can't reconfigure their A/V scanner for the new ports and SSL, then they won't be getting ANY mail so they won't be infecting countless other machines on a daily basis. Problem solved. :huh:

Frankly the problem falls back on the A/V programmers for not permitting the use of 995 and SSL for POP3 connections! All email clients have been able use those for the past several years. This change is for email security when people are using their email clients off the AT&T network, e.g. when traveling. Heck, Worldnet instituted this security for travelers years ago.

Maybe AT&T will leave a backdoor server such as pop.sbcglobal.net for those who can't use SSL and won't be leaving the AT&T network?

Re: Mail Changes Coming!

Mon, 05 Feb 2007 13:47:25 EDT
koma3504 : Some malaware is desighned when clicked on to disable your A/V So you would still be SOL. when it would be caught before it could attempt to exicute it. as it is now detected with the POP scanner as it downloaded it and Quarantine or disable access to said file.

Re: Mail Changes Coming!

Mon, 05 Feb 2007 13:35:28 EDT
manfmmd : Not if the AV has active scanning ( I believe that most , if not all of them do if they are running in the background). Like nwrickert stated, when it tries to load into memory, the AV will stop it.
--
huh? | AIM | Speaker Pelosi?!?...OH THE HUMANITY!

Re: Mail Changes Coming!

Mon, 05 Feb 2007 13:28:37 EDT
koma3504 : The average user would not even have a clue on how to do that. Like most older folks as a example.

What if it was a exicuteable that would have normaly been detected by the software of Their choosing that They pay for for just that reason. And now you get infected because it can't scan it as it downloads.

By default most leave outlook express to send and recieve at start up. which I personally prefer to have to click on send and recieve.

So Now you will have more infected machines infecting countless other machines on a daily basis.
--
† Koma †
If YOu Don't Think It's Possable!! It's Acually A Reality!! The best way to predict the future is to invent it. Alan Kay!!
Ya Don't Know The signal Till Ya Ride It!!
Voice Break's There's Trouble!!

Re: Mail Changes Coming!

Mon, 05 Feb 2007 13:21:52 EDT
nwrickert : I tried an experiment in 2003, when the sobig.f virus was rampant.

(1) I made sure that email scanning was turned off in my AV (this was McAfee enterprise).

(2) I deliberately sent myself a copy of a virus infected mail. This was accepted by my mail program without warning, and showed an attachment.

(3) I then tried to run the attachment. The AV immediately caught it and deleted the virus.

Most AV software is setup to catch viruses as they are loaded into memory. This works even if mail virus scanning is turned off.

NOTE: I did this experiment running as a limited user. That limits the damage even if a virus gets through.

Personally, I leave email scanning turned off, but I use a limited user account for most thing, including email reading.

Re: Mail Changes Coming!

Mon, 05 Feb 2007 13:00:53 EDT
d_l : Are you saying that your A/V scanner won't handle an SSL connection? You can handle that problem by piping the email request through stunnel. so that it looks like this:
email client <-- A/V scanner <-- stunnel <-- POP3 server

It looks complicated and unwieldy. Even though the initial set up can be difficult, once configured the arrangement is set and forget. I've used this for five years connecting to Worldnet with SAProxy in place of the A/V scanner with nary a problem.

The A/V program just needs a configurable hostmap file to set the incoming POP3 port to something other than the standard port 110.

Re: Mail Changes Coming!

Mon, 05 Feb 2007 12:30:20 EDT
koma3504 : Oh so now our incoming pop scanner on whatever A/V wont scan incomoming email?? Like it is already with worldnet accounts.

Re: Mail Changes Coming!

Sun, 04 Feb 2007 21:40:03 EDT
p51d007 : Works ok. Not sure if I needed to or not, but I added those
ports in NOD32 IMON

Re: Mail Changes Coming!

Sat, 03 Feb 2007 20:57:38 EDT
jimkyle : Everything should be encrypted, in both directions, with these new settings. I just changed over this afternoon and it's working nicely for me...

Re: Mail Changes Coming!

Sat, 03 Feb 2007 20:21:41 EDT
M9878 : I have been using port 587 for outgoing mail with the old server. Will this new 465 be as secure?

Re: Mail Changes Coming!

Fri, 02 Feb 2007 21:51:53 EDT
GB34 : Just now made the changes to Thunderbird settings and it worked just fine, both sending and receiving.

Mail Changes Coming!

Fri, 02 Feb 2007 18:09:56 EDT
manfmmd : Got this email today:

Dear AT&T Yahoo! Member,

We're making some security improvements to your AT&T Yahoo! service. These changes will affect members who send or receive email from a desktop or mobile client program, such as Microsoft Outlook, Microsoft Outlook Express, Eudora, Apple Mail, or Thunderbird.

To continue sending and receiving email with your desktop or mobile email client program, please take the following steps by March 30, 2007.

1. Open your email client program.
2. Locate the email account settings for your particular client.
3. Change the POP server to pop.att.yahoo.com.
4. Change the SMTP server to smtp.att.yahoo.com.
5. Change the SMTP port to 465 and check the option labeled Use an encrypted connection (SSL).
6. Change the POP3 port to 995 and check the option labeled Use an encrypted connection (SSL).

For detailed instructions on making these changes in Outlook and Outlook Express, please click here.

The web-based version of AT&T Yahoo! Mail is not affected by these changes and will continue to be available at »mail.yahoo.com.

If you have questions, please call us at 1-800-ATT-2020.

Sincerely,

AT&T Yahoo! Customer Care
Someone might want to make this a sticky.
--
huh? | AIM | Speaker Pelosi?!?...OH THE HUMANITY!

Email Accounts Page
General Tab
Outgoing Server Tab
Advanced Tab