Refer to the e-mail below:

Dear Valued Customer,



Telekom Malaysia Berhad wishes to inform its customers about TM's initiative in combating spam in its Internet Protocol (IP) network to improve our quality of service.

Recently, many anti-spam organizations have blacklisted a large number of IP addresses from TM's network. Due to this many customers have been unable to send emails from their mail server to companies who might be using database from the abovementioned anti-spam organizations.

These spamming activities by a small group have affected a large number of our customers, regardless of the nature of their Internet usage.

Therefore, TM is taking immediate action to address this issue. Effective 3 December 2007, TM will block OUTBOUND Simple Mail Transfer Protocol (SMTP) traffic or port 25 for all out going e-mails from dynamic IP addresses. Only Outbound SMTP traffic from smtp.streamyx.com and smtp.tm.net.my will be allowed.

With this implementation, Streamyx customers who have their own mail server will not be able to send e-mails. As an alternative, TM is providing an open relay server for these customers who use dynamic IP addresses. Kindly refer to http://webmail.tm.net.my/info/proxy.html on how to configure your email client in order to utilize the relay server. Alternatively, your e-mail administrators can refer to http://webmail.tm.net.my/info/smtp-proxy.html as a guide to configure your company's email servers.

Please be assured that TM is proactively taking all possible measures to ensure that these spamming activities do not reoccur in the future. We seek your kind co-operation to implement the necessary security measures to protect your computers that are connected to the Internet from any e-mail abuse, virus infection, spyware and malicious code.

For further enquiries and assistance, email us at help@tm.com.my or call TM at 100 and select 'Internet Services'.

About bloody time. And i wish all Malaysian ISPs are tougher on spammers. Disconnect them I say.

Thanks for the heads up.

Did you receive the mail today? So TMNet didn't give any prior notice at all eh. Looks like the webhosts support lines are going to be busy..

but normal user is affected

Only if you're running/going through a personal mail server. That's why we have webmail anyway.
A small price i say. Plus, they'll (probably) enable it once the spam is under control.

but my company all using smtp.and POS also using SMTP

Tough luck then.. change to another port?

Anyone can confirm if this is already implemented?

Won't this affect a lot of companies who use streamyx and check their own domain hosted email via smtp using outlook?

I guess if it's true, then internet in Malaysia tomorrow is gonna be with a lot less emails and Web Hosting Providers are going to have a fun time answering calls.

Cheers,
wilfred

i think its not fully emplemented, coz my house still can send e-mail thru smtp.

Maybe this is TMNet's strategy to get all IT departments to scramble and implement all smtp settings before TMNet actually implement the smtp blocking (a week later).... ??

Well, I can confirm it's working as my emails aren't going through. I was wondering what was wrong with my outlook the entire day.

I still don't get how they are going to control spam that way. If everyone uses their smtp relay to send emails, wont the load be heavy on their servers? Let's see how they cope with the additional traffic

My thoughts exactly. If their SMTP Proxy breaks down who am I going to turn to cause usually I can just go check/reset my mail server. Now I have to go change all my outlets e-mail setting because of this...sigh.

BTW their relay server is not working at all. Spammer can change from using port 25 to send e-mail. So what use they block port 25?

Why port 25? Because it's the standard for SMTP.

For a spammer to change from port 25 to say, port 26, the victim mail server needs to listen on port 26 as well. And no one sets up their email servers that way, because it's non-standard!

From now on, all outbound SMTP traffic (outgoing emails) must pass through smtp.streamyx.com and smtp.tm.net.my. No second choice. Here is the solutions for setting up your email client software:-
SETTING UP EMAIL CLIENT FOR SMTP PROXY

Outlook express

1. Start Outlook Express, click the Tools menu at the top of the window and then click Accounts.

2. When the Internet Accounts window opens click on the Mail tab .Click on mail properties

3. Click on the servers tab. Type smtp-proxy.tm.net.my as outgoing mail.

4. In the Outgoing Mail Server window unchecked My server requires authentication.

5. Click Apply, then click OK. Close the Internet Accounts window.


Microsoft outlook 2003

1. Open Microsoft Outlook and and go to Tools - Email Accounts...

2. Click the View or Change existing email accounts option, and click Next.

3. Highlight the type of email accounts you already have configured for Microsoft Outlook

4. Click the Change button. The Internet Email Settings dialog box appears, showing the settings for your existing account. Click the More Settings button.

5. The next Internet Email Settings dialog box appears containing four tabs. Click the Outgoing Server tab. Set outgoing server as smtp-proxy.tm.net.my

6. Unchecked the checkbox for My outgoing server (SMTP) requires authentication.

7. Click OK, then Next, then Finish.


Microsoft outlook 2000

1. Start Outlook 2000 then proceed to Tools > Internet Accounts. In the Internet Accounts window, click on your streamyx/ tm.net.my' account under the Mail tab then select Properties.

2. Select the Servers tab. On this tab make sure the entry for the Outgoing Mail Server is set to smtp-proxy.tm.net.my and that the My server requires authentication box is unchecked

3. Click Apply, then click OK. Close the Internet Accounts window


Mozilla Thunderbird

1. Open Thunderbird Mail. From the Tools menu select Account Settings.

2. At the left pane, select the entry Outgoing Server (SMTP). The Outgoing Server (SMTP) Settings appear on the right.

3. Edit to modify the entry of SMTP server as smtp-proxy.tm.net.my

4. In the User Name box enter your email address.

5. Click the OK button.




Eudora

1. Open Eudora. From the Tools menu, choose Options.

2. Choose Getting Started from the Category list.

3. In the SMTP Server (Outgoing) field, type smtp-proxy.tm.net.my

5. Uncheck the box next to Allow authentication.

6. Click the OK button.

7. Upon sending an email message, a box will appear prompting for the password to send email.

MAC OS X Mail

1. With Mac OS X Mail Client open, from the Mail menu, select Preferences
2. Select the Accounts option at the top of Preferences
3. Click the Plus (+) sign at the bottom of the screen
4. Click on the Account Information tab at the top and enter the following information:

* Account Type: POP
* Description: Email
* E-Mail Address: Your preferred domain email
* Full Name: Your full name
* Incoming Mail Server: Your domain pop server
* User Name: Your Emailadd
* Password: Your password
* SMTP Server: smtp-proxy.tm.net.my

i am not quite understand with this anouncement. As currently i try to using company dynamic ip send mail, still working fine....

For the blood sake!!


TM already send notification email on the day it self but it end up in the BULK mail folder in the Webmail. Not sure why their own mail classified as bulk

It's already implemented, but not fully I guess since I can send direct mail to the remote SMTP server from my house. Anyway my boss having a problem right now sending mail, he's on mobile. Our SMTP server is encrypted using TLS but the TM SMTP Server doesn't support it.

Make me headache 1st when he cannot send out an email while other users have no problem to do so. Finally I remember this announcement. Already send a complaint mail to the TM regarding tis latest 'improvement'. It's work really really well!!! Bravo!!!

Luckily we're managing our mail server by ourself so I can set another alternative port for the SMTP mail. If we're using 3rd party hosting how???


They never really thinking & do a research 1st before implement this, they should think about mobile users, complex mailserver configuration, different2 mail structure etc.


Well they keep the spammer away but in the same time they keep customers away as well.KUDOS@!@@@@

all go thru relay har, means they can trace your email if they want it in the future ;-)

and your password

ok, noob question, it means tat whenever we send mail, it will go through d smtp-proxy.tm.net.my 1st 4 checking then send out 2 respective mail server 2 send out? i've tested, it seems tat my mail like gone after send out...nv reach my inbox..weird..

for those using SMTP servers that requires authentication (such as Gmail), they're pretty much stuck in a bind already. Sending out their mails using TM's smtp server instead may cause their mails to be rejected (where its a pretty common setup for mail servers to reject mails where the originating smtp server's address does not match the MX record for the sender's domain)

tmnet SMTP server also refer to dsbl/spamhaus/RBL/ORDBL which later block most of the ip leased by their DHCP server. Plain stupidity.

That isn't a problem as far as large or decent mail providers are concerned. The blocking has been precedented by other ISPs who have been doing it for years. Mail providers have caught on and have their servers listening on other ports for example 587.

wkKay... Just got an email announcement this morning from Exabytes asking everyone to change smtp port 25 to port 26 as an alternative to going through streamyx's smtp-proxy...

Yeah, its not a problem for my work related accounts, as I access those via a VPN anyways. Just more of an annoyance when it comes to Gmail.

yeah that the standard port for smtp. But now my mail provider had change to port 26 now is working fine. If im a spammer, i still can continue spam wat. Btw gmail is using port 465 so its not affecteda also. So any alternate smtp other than port 25 still can work. It just matter of time the spammer to get back to their duty.

Port 26 is working already?i try at my area din work.

My company are using Jana Server as proxy server.Now i change the port to 26 but can work for me.It cannot let me type smtp-proxy.tm.net.my.

Port 26 only applicable to exabytes server.

OK, I think you misunderstood what I meant. Suppose..

A = you
B = exabytes (submissions on port 26)
C = 3rd party (on port 25)

Now provided these scenarios:

1) A wants to spam C. Port 25 is blocked, so A cannot spam C directly.

2) A via B spams C. The spam will be delivered. However, when C reports the spam, B has to take action on A's account (e.g. suspend it for TOS violation) otherwise it risks getting itself blacklisted.

3) A spams B. Again, in B's best interests, action will be taken on A's account.

4) C spams B. This can be easily blocked on B by mandating that submissions to port 26 must be authenticated, so 3rd parties can't spam its local users.

I believe what you were thinking of is scenario #2. The big picture motivation for the block is really to handle scenario #1. This happens due to infected computers being abused to send spam. Or possibly, syndicates abusing their Streamyx connections to spam. Convince yourself by checking your spam folder - see just how many mails are sent from connections with dynamic IPs.

By disallowing direct SMTP connections, the users now have to relay through servers that are accountable for the mails. After all, it is easier to blacklist a single static IP vs a infected computer that changes its IP every day as its user logs on and off.

ok, can send through my company's webmail, but it kinda take a long time 2 reach receipient.. d*mn, i wan my smtp back!

Already send a complaint letter to the TM CEO Office & GM Marketing. Hopefully they 'fix' their SMTP server of fallback to No Proxy

I found it effective to send straight to the CEO rather than customer care. Customer Care will delay your case but if you CC their CEO, they will work super fast. Believe me..

Here is the reply.

---

Added on December 4, 2007, 6:22 pmMore reading

http://www.jeffooi.com/2007/12/customers_c...over_tm_net.php

lets just giv them some time c how they come up with any solution lo..

How about scenario 5, i setup my own smtp server directly from LAN so i can use whatever port i like because is on my LAN. I can directly send e-mail from my own smtp server without going thru relay server and im on dynamic IP. So consider i still can spam.But i totally agree with you on the infected computers being abuse to spam, by blocking port 25 it can stop the infected computer to continue spamming.

Btw here a little piece of information i like to share:
i tried to setup my own smtp server and its working.Click here for more information and its a freeware http://www.geekgirls.com/net_smtp.htm
I can send out e-mail directly from my computer, i manage to send e-mail to streamyx receipient but not other receipient like gmail or hotmail because the receipient server response that my e-mail originated from unauthorise SMTP IP which i think they have a list of authorise SMTP IP list.
If any of you have time might tried it out.

That puts you back into scenario #1. Once your client relays mails to your private SMTP server, how would it (the private server) then relay it to the target server? Through port 25! Same difference, so you can't avoid the block. I'll illustrate my point with a diagram:

a) Your Spamlook Express --> Streamyx (port 25 blocked here) --> target mailserver
b) Your Spamlook Express --> your private SMTP server --> Streamyx (port 25 blocked here) --> target mailserver

yeah your rite, but since the mail provider switching to alternative port now, it cant be block,even the mail provider wan 2 ban my account for spamming they can done it when the port is still 25 no need to wait for now.1st bandwidth shaping now they block port 25, later only port 80 is allow?

I just hv a thought... do u think this hv anything to do with recent issues? Since now TM can hv a copy of all our mails, they can do anything they want, including search for anti-gov conspiracy??? just a thought...

i still can use my outlook this morning ..
using outlook 2003, havent change smtp yet ..

As I said, the motivation is to stop scenario #1, not scenario #2. Whatever you do with your mail provider is not TMNet's problem anymore as the accountability shifts to the mail provider for relaying the spam.

I don't think it's the goal, though it is a handy side-effect for them. I always use TLS over SMTP, which is pointless if it's going to be bounced through a server I don't trust.

However, it is fairly standard to support port 587 for authenticated mail submission from MUAs so I don't think this should end up being a big issue for most people in the long run. All of my work-related mail servers already accept mail on port 587 from authenticated users, as does the commercial service I use as a backup.

So... any news on whether the block is in effect or has been postponed?.. or is this just another announce but do nothing about it kind of thing from TM?

Can't use smtp2.tm.net.my anymore as of this morning.

I can still connect to outside SMTP servers on port 25 from my Streamyx (219.95) connection.

Is there a way to bypass this? I mean I dont want to use TMNet SMTP server (smtp-proxy.tm.net.my) ? I still want to continue using my office mail server (provided by web hosting company) ie: SMTP: mail.myofficedomain.com ?

Thanks

See if they also listen on port 587; many do, in fact, that's the support that's supposed to be used for mail from end users. Port 25 is for server-to-server mail transmission.

Or ask your office IT people to set up a redirector listening on some non-25 port. They can do that even if the actual mail server is not under their control. It shouldn't take more than a few minutes.

Has anyone confirmed whether port 587 is working? Just tried to send mail out using Thunderbird (smtp.gmail.com port 587) but my client couldn't connect.

TMnut should have made announcement thru newspaper for such an important change.

Port 587 works for me (then again, so does 25). I'm on cbj02-home.tm.net.my. Why not try using telnet at the command line so you can check for sure?

the block has been removed by tm.net. at least that is their official reply to my complaint and inquiry via MCMC. sadly my question have been ignored though. it would be interesting to see tm's stand on constitutional rights, privacy etc.

so enjoy sending as before

is the port still blocked? i just found out about this today, it seem like such a stupid idea to force everyone to direct mail through their relay server. Not to mention many administrator configure their email server to not accept mail from open relay, how reliable is their relay server?? can it handle all the traffic?? also if the spammer start sending mail through the relay, will it be blacklisted and ever mail from the relay will be rejected by spam blocker?

in their latest email, the date effective changed already

Therefore, TM is taking immediate action to address this issue where effective 15 January 2008, TM will block OUTBOUND Simple Mail Transfer Protocol (SMTP) traffic or port 25 for all outgoing e-mails from dynamic IP addresses. Only Outbound SMTP traffic from smtp.streamyx.com and smtp.tm.net.my will be permitted. This will be done in phases, starting in the Klang Valley area before being implemented nationwide.

Is spreading to Cheras ald.... stupid TmNet, I don't understand why they want to do that. The spammer also can spam through their relay server ma... why har, I am stupid to ask this question or they are stupid for doing this ?