Why does netgate.com have googlemail MX record?

johnpoz · Jan 10, 2024, 4:22 PM

@michmoor said in Why does netgate.com have googlemail MX record?:

I don't understand the issue

To OP Google = BAD... netgate uses google for email.. Like other millions of other companies.. ;) so OP doesn't want to use netgate..

Lets see netflix uses them, uber uses them.. etc.. So very big names use them.. now these are not security companies - but guess the OP shouldn't be using those services either.. itconvergence uses them too, I know they have quite a few fortune 500 customers.. Guess they didn't look into the details of how bad google is before using them ;)

jrey · Jan 10, 2024, 4:21 PM

@michmoor said in Why does netgate.com have googlemail MX record?:

I don't understand the issue and im trying to.

IMHO, it is not an "issue" at all. But rather and simply that the OP is red flagging the purchase based (and seemingly) entirely on the fact that Netgate's mail server has an MX at Google.

Several people (me included) I think, are just trying to expand the criteria being used and therefore allowing the OP to make a more informed choice.

I don't think the conversation is really any more complicated than that. At the end of the day what the OP chooses to do, is exactly that a choice they have to make.

Except those that specifically work for Netgate (and I'm not one of them) they are the only people that would be directly impacted by the OPs view.

@johnpoz said in Why does netgate.com have googlemail MX record?:

To OP Google = BAD... netgate uses google for email.. Like other millions of other companies.. ;) so OP doesn't want to use netgate..

Yes, exactly. and as such is really a narrow scope as expressed.

michmoor · Jan 10, 2024, 4:24 PM

Ahh ok. Fair enough.
I did read through the thread so i was getting confused on the point of why using a Google-hosted server was not good but ok i gotcha.
Carry on :)

johnpoz · Jan 10, 2024, 4:27 PM

@michmoor So you meet a nice person you want to do some "business" with.. You exchange info and find out they use t-mobile for their cell phone.. Which you don't like, but then you find out they have a aol email address.. And your like oh.. Not going to have anything to do with this person..

Its kind of like that ;)

michmoor · Jan 10, 2024, 4:36 PM

@johnpoz
Time to change the criteria on how you select a business partner. lol

johnpoz · Jan 10, 2024, 4:49 PM

@michmoor guess zscaler is out as well.. ;)

;; QUESTION SECTION:
;zscaler.com.                   IN      MX

;; ANSWER SECTION:
zscaler.com.            3600    IN      MX      10 aspmx3.googlemail.com.
zscaler.com.            3600    IN      MX      10 aspmx2.googlemail.com.
zscaler.com.            3600    IN      MX      5 alt2.aspmx.l.google.com.
zscaler.com.            3600    IN      MX      1 aspmx.l.google.com.
zscaler.com.            3600    IN      MX      5 alt1.aspmx.l.google.com.

They should prob go through all of their IT equipment and pull out anything made by broadcom ;)

;broadcom.com.                  IN      MX

;; ANSWER SECTION:
broadcom.com.           3600    IN      MX      10 mx1.smtp.goog.
broadcom.com.           3600    IN      MX      60 mx4.smtp.goog.
broadcom.com.           3600    IN      MX      50 mx3.smtp.goog.
broadcom.com.           3600    IN      MX      40 alt2.aspmx.l.google.com.
broadcom.com.           3600    IN      MX      40 alt1.aspmx.l.google.com.
broadcom.com.           3600    IN      MX      30 aspmx.l.google.com.
broadcom.com.           3600    IN      MX      20 mx2.smtp.goog.

VerticalTechnik · Jan 11, 2024, 9:30 AM

@michmoor GAFAMs.. for the ones who want to understand my thoughts on security and privacy evaluation.

johnpoz · Jan 11, 2024, 11:18 AM

@VerticalTechnik said in Why does netgate.com have googlemail MX record?:

GAFAMs

Wouldn't that now be GAMAMs now.. with facebook now being Meta

michmoor · Jan 11, 2024, 12:16 PM

@VerticalTechnik
But how does that help
In evaluating a companies ability to do commerce or treat your data securely.

Unless you are saying that because Netgate uses Google mail servers Google can read their mail…but smtp is insecure anyway so what’s the point.
If we’re being honest you just have a “security” policy of not j business with any entity that doesn’t own their mail servers which is a bit insane in 2024 but that’s your decision. It’s just strange that you’re choosing an insecure protocol by default as your decision point but ok

johnpoz · Jan 11, 2024, 12:42 PM

@michmoor maybe he is ok with the other mail providers, and spam filtering services that many a company, and very large ones especially run their mail servers through.

Proofpoint is a big one that many a large company uses, we are moving away from them - they have been missing obvious stuff.

MS is part of GAFAM or now should really be GAMAM, so maybe they don't do business with anyone that uses any of these services. Companies putting their info up on onedrive for example.. MS prob filtering through that stuff for data as well, if they mining data in email ;)

dem · Jan 11, 2024, 1:17 PM

@VerticalTechnik said in Why does netgate.com have googlemail MX record?:

@michmoor GAFAMs.. for the ones who want to understand my thoughts on security and privacy evaluation.

Tell us your thoughts on the icons near the bottom of (what I assume is) your home page.

NollipfSense · Jan 11, 2024, 3:10 PM

Google is in the business of extraction of information without privacy regards...it's their nature and that's bad for the living or dead human being. I champion the small group from Spain that took on Google and won for the right to be forgotten. Doing business with Google supports that extraction. It doesn't bother me that Netgate is hosting their email server on Google...it's mostly or all encrypted emails when I communicate with the company. However, I wouldn't support Google economic extraction engine and I completely understand why that could turn off a potential client.

JonathanLee · Jan 12, 2024, 4:15 AM

PfSense needs one for alarm emails, also they have one to preset NTP on boot up before NTP servers come online for log tracking also. Don’t worry about it

johnpoz · Jan 12, 2024, 4:37 AM

@JonathanLee

JonathanLee · Jan 12, 2024, 6:33 AM

@johnpoz

dw · Jan 12, 2024, 1:01 PM

@VerticalTechnik
You haven't setup your DMARC properly.
No cloud services? what's this - Microsoft office 365.
Try to google for "could act" and you will not be able to sleep.

NollipfSense · Jan 12, 2024, 2:41 PM

@dw said in Why does netgate.com have googlemail MX record?:

You haven't setup your DMARC properly.

You really think DMARC policy stops Google...think again...here is a list from my company's DMARC report account of silly hackers attempt at using Google email service...OP's concern is legitimate..

dem · Jan 12, 2024, 3:13 PM

@NollipfSense said in Why does netgate.com have googlemail MX record?:

You really think DMARC policy stops Google...think again...here is a list from my company's DMARC report account of silly hackers attempt at using Google email service...OP's concern is legitimate..

Google will send a DMARC report even if it has only received completely legitimate emails from your domain. The fact that you've received a report from them proves nothing.

You can send your reports to a site like dmarcian to get a detailed report about what's really in them.

michmoor · Jan 12, 2024, 3:36 PM

OPs concern aside, i find this conversation pretty interesting. Grabbing my popcorn

VerticalTechnik · Jan 12, 2024, 3:53 PM

@dem Sure.. this is a good argument, and currently in progress to be changed. Nevertheless, this has an lower priority as giving potentially critical Hardware informations about Firewall, Network etc.. And this topic might be a controversial discussion.
Primally I wanted to give an input to Netgate, that this MX record does exist, and can avoid potential clients to buy their products. Sure its none of my business what Netgate thinks about it, but mabye some clients do care.