Keith Stevenson

@Jack_Podmore Thanks for the post. The full update tonight (at 1AM UTC) will contain the fix for UTF8 chararacters. However this is a very specific issue, without checking your logs etc we can confirm whether its the same issue (If you get the same error message, there is a good chance its the same issue). Best to wait until tomorrow, if you still get error, log a call with our Support team and we can look at the logs. Kind Regards Keith Stevenson

@davidrb84 Can you confirm that there are no issues this morning. ? Kind Regards Keith Stevenson

@Martijn The problems is UTF8 characters in any of the fields (Display Name or LoginID) or any other part of the SAML request\response. This was due to a change in the handling of requests in the last build that contained UTF8 characters. Kind Regards Keith Stevenson

@Martijn, Thanks for the post and can see the issue. We can patch this out of hours tonight. Kind Regards Keith Stevenson

Jack, Thanks for the post. We can inform you that there appears to be nothing wrong with your instance, all resources are fine, services as expected and all tests are returning what we would expect. The fact that the time out occurs on the first stage suggests a problem between you and the server. Can you confirm that this occurs on a machine not on your site. Kind Regards Keith Stevenson

Peter, Can you confirm This shows same for ALL Users This increases (correctly+1) for the number of items in mailboxes in the Inbox Folder. Kind Regards Keith Stevenson

Ann, Thanks for the post. It would appear that your IMAP account for your email can no longer log in (This is for Office365). You will need to contact the Admin of this. We can also confirm that the issue started occuring before the update last night and that all other Office365 users appear to have no problems. Kind Regards Keith Stevenson

Peter, Thanks for the post. We can inform you that the log file is archived and information available. However we could only release this information to the nominated contacts for your instance. Please contact your sites nominated contacts and request that they log this request through the appropriate channels for your Support plan. Kind Regards Keith Stevenson

Jeremy,. I have sent you a PM with the details. Kind Regards Keith Stevenson

Jeremy. Thanks for the post. At the moment there is no more granular report of disk usage from within the Admin Portal, however ive tagged your instance and will be able to see after 24 hours what is increasing and will drop you a PM about this time tomorrow. (As your listed as the Primary Tech contact). Kind Regards Keith Stevenson

@m.vandun Thanks for the post. So firstly we are not sending\doing anything dodgy and only this one list that seems to have issues. If you look at https://mxtoolbox.com/SuperTool.aspx?action=blacklist%3a87.117.243.10&run=toolpage you will see that all other lists have no issues (most of which are far better known than the UCE Protect.). All our monitoring and checks show no untoward activity and all traffic is as expected. There have been no configuration changes on the system relating to outbound mail from live.hornbill.com in past 4 months. Secondly, nothing I can find about this site is good news, If it was a legitimate issues we would need to fix whatever was the problem and then contact the spam list to request removal. This is normally easy, clear and the spam list maintainer themselves helpful. In this one it seems they just want you to pay as they say "we will remove it in 7 days or you can pay for experdidate removal. " They also give no clear reason as to why the IP was blocked or a contact to discuss why it was blocked. They suggest from the listing that the IP sent email to a spam trap. This could be true (as a shared IP for all outbound Email) any 1 customer may have inadvertently sent email to a given address. Sadly without knowing what address (these arent listed or provided) we have no idea if this is the case. (This would also be the case for any multi tenant system or hosted service). The List has even listed entire AWS IP ranges. Given the size and customer base of UCEPROTECT we would recommend that any customer effected by this switch to SMTP SMART host of their own rather than the Hornbill provided list. In summary · The criteria for customer IP’s being placed on UCEPROTECT block lists are not publicly available and appear to be overly aggressive in nature (entire IP ranges can be blocked based on a single ‘suspicious’ IP). · UCEPROTECT refuses to interact with vendors to help assist in understanding the criteria behind the blocking whereas other more reputable blocklists will engage with customers so that customers can proactively correct behaviour. · Unlike other reputable blocklists UCEPROTECT also charges a fee for delisting . Paying the fee will not prevent UCEPROTECT from again blocking the same IP in 1 day, 1 week etc. leading to further blocklisting and payment requests in the future. At the same time, we are advising our customers and their email recipients to avoid using UCEPROTECT’s blocklisk or if not possible configure Hornbill to use their own SMART host rather than the live.hornbill.com provided SMART HOST The other part (which the site says is a warning ant not cause) is Forward-DNS does NOT match Reverse-DNS. This is known as Forward-Confirmed reverse DNS (FCrDNS). This basically means that the hostname's A record must match the reverse DNS (PTR) record for the IP. This was a historic attempt to ensure that the Sender owned the domain and the DNS record. In reality it never really worked once cloud services or multi tenant systems became a reality with multiple SMTP serves serving many customers and having resilience and was dropped by all but 2 lists years ago. Therefore as with above, At the same time, we are advising our customers and their email recipients to avoid using any blocklisk that implmennts FCrDNS or if not possible configure Hornbill to use their own SMART host rather than the live.hornbill.com provided SMART HOST We hope this clarifies your query. Kind Regards Keith Stevenson

Mike, If you choose to use our SMART HOST (172.16.1.26) all emails will only be sent from the @live.hornbill.com domain, there is no option to send on your behalf (which is what direct Outbound does) Kind Regards Keith Stevenson.

Mike, IF you are using SMART Host you can specify the level of Encryption between Hornbill and the SMART Host you want to use (Typically your own Exchange Server). What this SMART host then does with it is then not under Hornbill controlIf using Direct Outbound on connection to the recipients SMTP host we see if this server accespts TLS and if so STARTTLS It would appear that you are using Direct Outbound which suggests that the recipients server does not state that it Supports TLS when we connect/ Can you Direct Message me with a Date\Time and Recipient that you sent to that failed to send over TLS and we can check the recipients server . Kind Regards Keith Stevenson

Dave, If you go into admin.hornbill.com/instancename and then System->Email->Shared Mailboxes and click on your mailbox, you can goto the Addresses Tab. On there you can highlight the given address you want, tick the box and then click the Tick Icon to set it as default. Kind Regards Keith Stevenson

Dave, Yes. Thats correct. Kind Regards

Dear Dave, Please see the below on Email Templates and Date Variables. you need to add formatLocalTime as below https://wiki.hornbill.com/index.php/Email_Templates Kind Regards Keith Stevenson

@7oaks Can you check again and let us know of any error. Kind Regards Keith Stevenson

Andy, Is Mumar, murit the first word in Subject if not you need %word% Kind Regards Keith Stevenson

Andy, Thanks for the post. You should be able to highlight the first, hold shift, highlight the last to select all records of a given type\service\status. (You would still need to take them off hold) - See attached GIF Kind Regards Keith Stevenson

@Shamaila Thanks for the post. Apologies for the delay I was on annual leave. We have now updated this so you should be able to delete it from the full client. Kind Regards Keith Stevenson

@Shamaila We have noticed that the problem on your instance appears to be caused by a rather large body in the Alert email. We will be in touch shortly to discuss options to resolve this. Kind regards Keith Stevenson

All, This was resolved by the local ISPs in Cape town just before midnight and appears to be functioning as expected. Can you confirm. Kind regards

All, This appears to be a routing issue in and around cape town rather than a cloud flare specifc and therefore we are unsure if any workaround will work. Craig, the tracert you provided was incomplete and we cant see the route it took, can you provide a tracert to 78.129.173.117 from any other machine (Hoping to see full route), you could also try adding 78.129.173.117 to your hosts or local DNS as live.hornbill.com bypassing cloudflare (If this works then we can look at creating a subdomain that doesnt go via cloudflare specifically for cape town until the issue is resolved if possible. ) KInd regards

Stephen, This seems to be impossed by the NHS and therefore they may be best to offer advice. However, rather than forward mail onto hornbill (Guess you are forwarding it to your live.hornbill.com address from your mail server) why not use IMAP (overTLS or SSL) and download the mail direct from nhs.net. (We have other NHS customers who do this). Kind Regards Keith Stevenson

All, We had raised this with Cloudflare, who have confirmed that they have identified the issue and a fix is being rolled out to Cape Town. (As of 12:13). Can you confirm that this is still an issue. Kind regards