XF 1.4 Automated Bounce Email Handling

Most forums need to deal with members whose email address becomes invalid. Sometimes the user will go ahead and change it, but other times your forum will fire off emails to this now invalid address. When this happens, if you have a bounce email address setup in XenForo (and possibly with the -f option enabled in the mail configuration), you will receive an email telling you about the failure.

Email delivery failures can happen for a wide variety of reasons. If you continually send to an address that has been disabled, for example, this can count against your domain/IP's email reputation. A lower email reputation can lead to reduced email deliverability as your domain may appear to be a spammer.

Therefore, when you are notified that an email can't be delivered, you may want to prevent further emails from being sent to that user. XenForo 1.3 added a new user state that represents an invalid email, but you had to manually change users into this state. With a decent size forum, this could be tedious and time consuming at best and impossible to manage at worst.

To handle this, XenForo 1.4 implements an automated bounce email processing system. This is a fairly detailed and technical system, but it allows an important maintenance action to be automated.

Automated Bounce Parsing
ss-2014-07-11_17-27-16.webp

The core component of this system is a process that reads emails from a specific account and then parses those emails to determine if they are bounce messages.

As bounce notifications will be sent to the value you enter for the "Bounced Email Address", you would enter the POP3 or IMAP details for that account here. Once you do that, the system will automatically start checking this account for bounce messages. Note that the emails in this account will be removed after reading so this account needs to be dedicated to bounces from your forum only.

Every email that is read from this account will be analyzed to determine if it fits a known type and the appropriate action will be taken (changing the user state to indicate that the email is invalid, if appropriate). This is all displayed in the email bounce log in the control panel:

ss-2014-07-11_17-38-46.webp


The action taken will depend on the content of the email. The sections below discuss why an email could be untrusted and the distinction between soft and hard bounces.

Bounce email notification parsing is notoriously difficult due to a wide range of servers that don't actually give good bounce responses. We have covered a number of common cases but this will certainly need to be expanded over time, so if you use this feature, keep an eye on the bounce log and let us know if you see emails that aren't being handled correctly. The "view original" link will take you to a raw output of the original email (headers and all encoded data). This data can be used to help us determine any additional cases to handle.

Note that you may get non-bounce emails to this address, such as delay notifications, challenge verifications and auto-replies. These will be logged, but they don't represent any errors so no action will be taken.

Bounce email logs will be maintained for 30 days.

VERP and Validation
While you would think that a bounce notification would always tell you who the email was sent to, you'd be wrong. Sometimes, the notification will only show you the address of the final recipient, and maybe they forwarded their email to another address. In rare cases, it might not list any address.

A common way around this is with a technique called Variable Envelope Return Path (VERP). The concept behind VERP is to encode the recipient email into the Return-Path header (which is where the bounce notification is sent).

Another important component is validating that the original email was actually sent by your forum. Without this, someone could manually create a bounce notification, send it to your bounce address, and trigger the bounce behavior for any email. By adding a validation hash into the return path, we can simply ignore any email that doesn't validate. This is what the "untrusted" component is in the email bounce log screenshot.

Let's look at a quick VERP example:
  • Bounce handler address: bounce@yourdomain.com
  • Email recipient: user@example.com
The VERP may look like: bounce+1234abcd+user=example.com@yourdomain.com. The "1234abcd" part is the validation key that is generated using a secret key.

Keep in mind that the Return-Path is never shown to the end user (unless they look at the raw email contents). The Return-Path and the From/Sender values are always unrelated.

ss-2014-07-11_17-58-14.webp


We would recommend enabling VERP support if you enable the automated bounce handling option. However, it does require that your SMTP server ignores anything after the + sign. This is quite common these days; Gmail does it, for example.

If you don't (or can't) enable the VERP option, we will embed this data in the original email via another header. Some bounce notifications include the original message (or the headers from it) and we can parse this data out of that. However, it may not be as reliable as the VERP option.

Soft and Hard Bounces
Bounce notifications report a wide range of issues. Some of these are unlikely to ever be resolved and others may be temporary or specific to a single message. This is where a soft and hard bounce distinction becomes necessary.

When a hard bounce happens, action will be taken immediately (setting the user state to indicate that their email is invalid). These issues are unlikely to ever be resolved, except maybe through dumb luck. Most commonly, this will be an invalid mailbox (the part to the left of the @ in the address).

Soft bounces include:
  • The recipient's mailbox being full
  • DNS/connectivity issues
  • The message being too long (as other messages may go through)
Soft bounces don't trigger the user state change until multiple messages bounce. The exact behavior is defined by a set of criteria:
ss-2014-07-11_18-06-50.webp

The criteria is designed to give the recipient (or their server admin) a chance to resolve the issue. If the limit was based solely on the number of emails, a flurry of messages in a short time span could trigger the soft bounce threshold.

Using the values in the screenshot, the email would only be considered invalid if:
  • We received 3 or more bounce notifications
  • The bounce notifications happened on 3 or more distinct days
  • The amount of time between the first and last bounce is at least 5 days
These values can be tuned to fit your needs and how strict you want to be.




Phew, that was a long one. Let us know if you have any questions or thoughts and keep an eye out for more 1.4 features being revealed soon.

Just a reminder: Please do not post suggestions in this thread (even if you feel they are related). Use the dedicated suggestion forum so they can be tracked; suggestions made in this thread are unlikely to be implemented.
 
Bounce email notification parsing is notoriously difficult due to a wide range of servers that don't actually give good bounce responses. We have covered a number of common cases but this will certainly need to be expanded over time, so if you use this feature, keep an eye on the bounce log and let us know if you see emails that aren't being handled correctly. The "view original" link will take you to a raw output of the original email (headers and all encoded data). This data can be used to help us determine any additional cases to handle.
Mike, I have an automatic bounce handler which we created for vbulletin. For this I analysed tens of thousands of bounce mails and categorized all bounce messages into a number of bounce types. Pretty similar to what you are doing. This took me 5 months to do. Would it be useful to send the overview of bounce messages / bounce types to you? It likely contains a lot of bounce messages which you did not encounter yet.

Some suggestions for improvement:
  1. do not lock out staff members, but only alert them. staff mail tends to bounce much easier, because they receive a lot of notifications. staff is likely to fix the issue anyway, and its needed for staff to get on site regardless of bounces.
  2. allow bounced members to post in a specific forum or let them receive support in some way. Less tech savvy people really need this.
 
Excellent as always. It's a pleasure to recommend XenForo to all our customers every time they mention they need a better forum software.
 
Very Nice!

I recently setup a separate email server and over the weeks have been noticing the additional stats. This feature would eventually reduce the number of bad emails.
 
@Mike
receiver@earthlink.net
SMTP error from remote mail server after MAIL FROM:<support@mydomain.com> SIZE=2272:
host mx2.earthlink.net [MY-IP]: 550 IP MY-IP is blocked by EarthLink. Go to earthlink.net/block for details.
receiver@otherdomain.com
SMTP error from remote mail server after RCPT TO:<receiver@otherdomain.com>:
host receiver-host.mail.protection.outlook.com [MY-IP]:
550 5.7.1 Service unavailable; Client host [MY-IP] blocked using Blocklist 1; To request removal from this list please forward this message to delist@messaging.microsoft.com
Ideally, we don't want these kinds of bounces to automatically change our user's states. The bounce is due to a third-party block list (earthlink, microsoft, etc), and the emails stop bouncing simply by us contacting earthlink, microsoft, and friends directly and telling them not to block us anymore.

We had an issue where our mail server was hacked last year, and some places have been slow to remove the blocks that were put up against it.
 
Last edited:
Yes, a good start.

Can we move users on their Bounce-Count? On First-Hard-Bounce? Send them alerts and create Info-Boxes? All this need to be done to use this featuer on a good way.
 
Mike, I have an automatic bounce handler which we created for vbulletin. For this I analysed tens of thousands of bounce mails and categorized all bounce messages into a number of bounce types. Pretty similar to what you are doing. This took me 5 months to do. Would it be useful to send the overview of bounce messages / bounce types to you? It likely contains a lot of bounce messages which you did not encounter yet.

Some suggestions for improvement:
  1. do not lock out staff members, but only alert them. staff mail tends to bounce much easier, because they receive a lot of notifications. staff is likely to fix the issue anyway, and its needed for staff to get on site regardless of bounces.
  2. allow bounced members to post in a specific forum or let them receive support in some way. Less tech savvy people really need this.

For number 2, can't you just set the bounced usergroup to be able to post in certain places of the site?
 
For number 2, can't you just set the bounced usergroup to be able to post in certain places of the site?
No. There's no such thing.

If your email is invalid due to bounce, your account is in a non-valid User State. Your permissions effectively revert back to being a guest. The only way to change these are to change the Guest permissions, but most of the time you won't want to do that.

I do feel it'd be more appropriate to have more control over this, e.g. to be able to set a bounce usergroup. But on the flip side, there's no better way to encourage someone to fix their e-mail address.
 
Yes, a good start.

Can we move users on their Bounce-Count? On First-Hard-Bounce? Send them alerts and create Info-Boxes? All this need to be done to use this featuer on a good way.
I gathered a hard bounce causes the state change, and you set criteria for when to change the state for soft bounces.

Users in this state are shown a notice when the are logged into the site.
 
Back
Top Bottom