[arin-ppml] Curious question, why does ARIN send critical emails out through a shared server?
Michael Peddemors
michael at linuxmagic.com
Thu Apr 30 09:36:50 EDT 2026
Return-Path: <bounced-prod at account.networksolutions.com>
Received: from atl1-ob02-18.websitewelcome.com (HELO
atl1-ob02-18.websitewelcome.com) (206.188.222.11)
Received: from atl1wswcm02.websitewelcome.com (unknown [50.6.129.163])
Received: from 328-custcomm-wdrp-notification-cron-job-29625360-2qglj
([50.6.74.62])
Subject: Action Required: Review WHOIS contact data
Given the importance of these emails, more transparency is in order, and
using shared mailers does open the threat of 'phishing'..
First of all, the sender should clearly show @arin.com,
The originating IPs, should have PTR's reflecting their role in arin
infrastructure.
host 50.6.74.62
62.74.6.50.in-addr.arpa domain name pointer 50-6-74-62.unifiedlayer.com.
host 50.6.129.163
163.129.6.50.in-addr.arpa domain name pointer 50-6-129-163.unifiedlayer.com
These are operated by Newfold Digital?
IMHO, a better job can be done on these mailings, and the use of shared
services can open doors to problems, including at the least ending up in
people's spam folders.. and have them miss such an important notice.
More information about the ARIN-PPML
mailing list