At 10:54 AM -0400 2003/08/28, Richard Rognlie wrote:
And according to RFC2821, putting an IP as the HELO *IS* valid.
it is supposed to be an FQDN or an IP (in those cases where a machine
has no name [e.g. a dynamic dialup IP]) However, I don't accept
mail from HELO ip.ad.re.ss unless it's a LOCAL IP.
Since RFC2821 explicitly prohibits you from checking the domain
literal claimed in EHLO/HELO and rejecting the message if the reverse
DNS doesn't match that domain, then I submit that your tests are at
least violating the spirit of RFC2821 in a similar manner.
But this is something that needs to be put in an updated BCP. We
should probably also talk to the appropriate IETF group about an
update/clarification of RFC2821 to be more explicit on these issues.
--
Brad Knowles, <brad(_dot_)knowles(_at_)skynet(_dot_)be>
"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
-Benjamin Franklin, Historical Review of Pennsylvania.
GCS/IT d+(-) s:+(++)>: a C++(+++)$ UMBSHI++++$ P+>++ L+ !E-(---) W+++(--) N+
!w--- O- M++ V PS++(+++) PE- Y+(++) PGP>+++ t+(+++) 5++(+++) X++(+++) R+(+++)
tv+(+++) b+(++++) DI+(++++) D+(++) G+(++++) e++>++++ h--- r---(+++)* z(+++)
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg