gmail account disabled - how to proceed?
Hello, First, best wishes to all for the new year. I manage a koha system that supports 7 volunteer-run libraries in Sheffield, UK. Since 2018 we have used gmail as a relay for sending overdue notifications etc. Recently, Google informed me that they have disabled the service due to violation of their terms of service. We are not sure exactly what they are unhappy about but we suspect it might be due to a high proportion of bounced messages, (We have rather too many incorrect email addresses in koha.) I would be interested to hear from anyone who has had a similar problem, and has found a solution. In particular, I would like some guidance on setting up Postfix to send out email directly (without using gmail as a relay), and setting up SPF, DKIM and DMARC. In case it is relevant, we are using koha 22.11. Thanks and Best Regards, Chris Brown
Hi Chris, Regardless of what email provider you use, having a lot of email bounces is likely to affect the reputation of your sending domain. Even if you own the email domain, recipients' domains may mark your messages as spam or quarantine them on the basis of that reputation. You will need to improve the quality of your data. Depending on the proportion of addresses that are incorrect, you might consider turning off email notifications until you can correct the data. Are there particular reasons for choosing the configuration of Postfix over Koha's built-in SMTP server settings? There is additional administrative overhead to setting up Postfix—and those settings will not be included in Koha's regular backup routine. The SMTP server settings, on the other hand, are backed up with the rest of the database. SPF, DKIM, and DMARC will not be configured in Koha, but rather at your DNS host, which may or may not be your domain host. Your DNS/domain host may have published guides for setting up these functions, so it should be your first point of reference. If you're not sure where you need to start, I encourage you to share more details about your environment—without exposing operational details that could be exploited. Regards, David Liddle Koha System Administrator & Email Administrator Seminar für Sprache und Kultur, https://spracheundkultur.org On Tue, Dec 30, 2025 at 3:51 PM Chris Brown <chris@stayawake.co.uk> wrote:
Hello,
First, best wishes to all for the new year.
I manage a koha system that supports 7 volunteer-run libraries in Sheffield, UK. Since 2018 we have used gmail as a relay for sending overdue notifications etc. Recently, Google informed me that they have disabled the service due to violation of their terms of service. We are not sure exactly what they are unhappy about but we suspect it might be due to a high proportion of bounced messages, (We have rather too many incorrect email addresses in koha.)
I would be interested to hear from anyone who has had a similar problem, and has found a solution. In particular, I would like some guidance on setting up Postfix to send out email directly (without using gmail as a relay), and setting up SPF, DKIM and DMARC. In case it is relevant, we are using koha 22.11.
Thanks and Best Regards,
Chris Brown _______________________________________________
Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz Unsubscribe: https://lists.katipo.co.nz/mailman/listinfo/koha
Hi David, Many thanks for your advice. I have already spent some time identifying the koha patron records with bad email addresses and have sent them out to the individual libraries to ask if they can correct them. It remains to be seen how successful this will be. I've also turned email off for all the instances for now. You ask: "Are there particular reasons for choosing the configuration of Postfix over Koha's built-in SMTP server settings?" The reason is purely historical. When we originally set up koha email, it didn't have a built-in SMTP server, and when we updated koha, we didn't bother changing it. I have been reading up on how to set up SPF, DKIM and DMARC and plan to have a go. (I used to teach Linux professionally so I'm comfortable working at a Linux command prompt ... it's just getting a little rusty these days.) Am I right in saying that koha's built-in SMTP server won't handle DKIM? Thanks again, and Best Regards, Chris Brown On Tue, Dec 30, 2025 at 4:54 PM David Liddle <david@liddles.net> wrote:
Hi Chris,
Regardless of what email provider you use, having a lot of email bounces is likely to affect the reputation of your sending domain. Even if you own the email domain, recipients' domains may mark your messages as spam or quarantine them on the basis of that reputation. You will need to improve the quality of your data. Depending on the proportion of addresses that are incorrect, you might consider turning off email notifications until you can correct the data.
Are there particular reasons for choosing the configuration of Postfix over Koha's built-in SMTP server settings? There is additional administrative overhead to setting up Postfix—and those settings will not be included in Koha's regular backup routine. The SMTP server settings, on the other hand, are backed up with the rest of the database.
SPF, DKIM, and DMARC will not be configured in Koha, but rather at your DNS host, which may or may not be your domain host. Your DNS/domain host may have published guides for setting up these functions, so it should be your first point of reference. If you're not sure where you need to start, I encourage you to share more details about your environment—without exposing operational details that could be exploited.
Regards,
David Liddle Koha System Administrator & Email Administrator
Seminar für Sprache und Kultur, https://spracheundkultur.org
On Tue, Dec 30, 2025 at 3:51 PM Chris Brown <chris@stayawake.co.uk> wrote:
Hello,
First, best wishes to all for the new year.
I manage a koha system that supports 7 volunteer-run libraries in Sheffield, UK. Since 2018 we have used gmail as a relay for sending overdue notifications etc. Recently, Google informed me that they have disabled the service due to violation of their terms of service. We are not sure exactly what they are unhappy about but we suspect it might be due to a high proportion of bounced messages, (We have rather too many incorrect email addresses in koha.)
I would be interested to hear from anyone who has had a similar problem, and has found a solution. In particular, I would like some guidance on setting up Postfix to send out email directly (without using gmail as a relay), and setting up SPF, DKIM and DMARC. In case it is relevant, we are using koha 22.11.
Thanks and Best Regards,
Chris Brown _______________________________________________
Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz Unsubscribe: https://lists.katipo.co.nz/mailman/listinfo/koha
Hi Chris, Typically, SPF, DKIM, and DMARC won't be set up from the command line. They might, but they might not—it depends on your DNS host and its supported management tools. The instructions I have relied on direct administrators to web interfaces. With respect to DKIM, I expect the process to be handled by the email provider and not by the client itself, e.g. the Koha server. That's how the mail systems I manage work. The client authenticates itself to the authorized email service, the service signs the message with the private key, and then it sends it on to the recipients. The receiving email service uses the public key configured in DNS to verify the authenticity of the sending server. In such a case, a Koha server using SMTP would not have to do anything extra. If you are planning to run the libraries' email service entirely on your own, then you definitely have more research to do. If there are administrators out here who have experience doing that, perhaps they will offer to guide you through the process. You will definitely be taking on a lot more work and significantly more risk, since every public-facing component will be vulnerable to attack. In my opinion, it's better to let an external provider handle a service that can be attacked or abused in so many ways—my time is better spent doing other things. Regards, David Liddle Koha System Administrator & Email Administrator On Wed, Dec 31, 2025 at 11:34 AM Chris Brown <chris@stayawake.co.uk> wrote:
Hi David,
Many thanks for your advice. I have already spent some time identifying the koha patron records with bad email addresses and have sent them out to the individual libraries to ask if they can correct them. It remains to be seen how successful this will be. I've also turned email off for all the instances for now.
You ask: "Are there particular reasons for choosing the configuration of Postfix over Koha's built-in SMTP server settings?"
The reason is purely historical. When we originally set up koha email, it didn't have a built-in SMTP server, and when we updated koha, we didn't bother changing it.
I have been reading up on how to set up SPF, DKIM and DMARC and plan to have a go. (I used to teach Linux professionally so I'm comfortable working at a Linux command prompt ... it's just getting a little rusty these days.)
Am I right in saying that koha's built-in SMTP server won't handle DKIM?
Thanks again, and Best Regards,
Chris Brown
On Tue, Dec 30, 2025 at 4:54 PM David Liddle <david@liddles.net> wrote:
Hi Chris,
Regardless of what email provider you use, having a lot of email bounces is likely to affect the reputation of your sending domain. Even if you own the email domain, recipients' domains may mark your messages as spam or quarantine them on the basis of that reputation. You will need to improve the quality of your data. Depending on the proportion of addresses that are incorrect, you might consider turning off email notifications until you can correct the data.
Are there particular reasons for choosing the configuration of Postfix over Koha's built-in SMTP server settings? There is additional administrative overhead to setting up Postfix—and those settings will not be included in Koha's regular backup routine. The SMTP server settings, on the other hand, are backed up with the rest of the database.
SPF, DKIM, and DMARC will not be configured in Koha, but rather at your DNS host, which may or may not be your domain host. Your DNS/domain host may have published guides for setting up these functions, so it should be your first point of reference. If you're not sure where you need to start, I encourage you to share more details about your environment—without exposing operational details that could be exploited.
Regards,
David Liddle Koha System Administrator & Email Administrator
Seminar für Sprache und Kultur, https://spracheundkultur.org
On Tue, Dec 30, 2025 at 3:51 PM Chris Brown <chris@stayawake.co.uk> wrote:
Hello,
First, best wishes to all for the new year.
I manage a koha system that supports 7 volunteer-run libraries in Sheffield, UK. Since 2018 we have used gmail as a relay for sending overdue notifications etc. Recently, Google informed me that they have disabled the service due to violation of their terms of service. We are not sure exactly what they are unhappy about but we suspect it might be due to a high proportion of bounced messages, (We have rather too many incorrect email addresses in koha.)
I would be interested to hear from anyone who has had a similar problem, and has found a solution. In particular, I would like some guidance on setting up Postfix to send out email directly (without using gmail as a relay), and setting up SPF, DKIM and DMARC. In case it is relevant, we are using koha 22.11.
Thanks and Best Regards,
Chris Brown _______________________________________________
Koha mailing list http://koha-community.org Koha@lists.katipo.co.nz Unsubscribe: https://lists.katipo.co.nz/mailman/listinfo/koha
Hi! On Tue, Dec 30, 2025 at 02:51:58PM +0000, Chris Brown wrote:
I manage a koha system that supports 7 volunteer-run libraries in Sheffield, UK. Since 2018 we have used gmail as a relay for sending overdue notifications etc. Recently, Google informed me that they have disabled the service due to violation of their terms of service. We are not sure exactly what they are unhappy about but we suspect it might be due to a high proportion of bounced messages, (We have rather too many incorrect email addresses in koha.)
I would be interested to hear from anyone who has had a similar problem, and has found a solution. In particular, I would like some guidance on setting up Postfix to send out email directly (without using gmail as a relay), and setting up SPF, DKIM and DMARC. In case it is relevant, we are using koha 22.11.
Running your own mail infrastructure is possbile, but quite a lot of work that also needs constant maintaince. I know because (in a non-Koha project) we have been runnig our own mail servers (for outgoing mail). The initial setup is managable and sort of well documented, but the real problem is that your servers will get (IMO randomly) blocked by the various big mail providers (google, outlook, ..). So we will constantly have to monitor your mail logs, and if/when you're blocked you will have to manually jump through some hoops to get your IPs un-blocked. Or you have to rotate the mail sending IPs/servers... Unless you send a lot of mail (>10k/day) this will not make sense. Here's a random blog post that seems to offer a bit more details: https://elementor.com/blog/how-to-host-your-own-email-server/ It is better to find a provider of "transactional mail services" and pay them for doing the above. There are a bunch of big services (that might be hosted outside the EU and thus maybe in conflict with GDPR etc): SendGrid, Amazon SES, Mailchimp, ... Or maybe you can use one of those: https://european-alternatives.eu/category/transactional-email-service Shameless pitches: * We (HKS3) recently helped / sponsored getting some mail services used by koha devs running again, using a German provider of transactional mail. Maybe we could also help you, if your interested: office@koha-support.eu * And/or I could ask my partner in the non-koha project if they would provide transactional mails for external customers (I think they plan to do it). One other note regarding google specifically: They switched some time ago to only allowing mails to be sent using an "Application Password". Did you set that up? I've described the process here: https://domm.plix.at/perl/2022_05_use_multiple_gmail_accounts_via_mutt_and_o... (or google it...) Greetings, domm -- Thomas Klausner domm https://domm.plix.at Just another ( Perl | Postgres | Koha | Bicycle | Food | Photo | Vinyl ) Hacker Frohe Feste! [ 2025-12-24 10:00 > https://domm.plix.at/potd/2025-12-24.html ] Today, instead of the last day of #AdventOfCode, I will finish our MAB2-to-MARC21 converter (handling depended works), which in fact feels quite similar to working on Advent of Code puzzles. [ 2025-12-12 07:36 > https://domm.plix.at/microblog.html ]
participants (3)
-
Chris Brown -
David Liddle -
Thomas Klausner