ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Asrg] 7. BCP - Verisign and wildcards [CORRECTION]

2003-09-20 06:52:35
from [Yakov Shafranovich] [Permanent Link] 
Jonathan Morton wrote:


 Please don't get me wrong, I am really upset about VeriSigns "coup",
 but there is more to fix than just .com/.net and not all white hats
 are without big black spots ...
Right. This is why ISC is working on a real solution to the overall problem. According to the article by Declan McCullagh at <http://news.com.com/2100-1032_3-5077530.html>, there should be a fix for this published by tomorrow. 


the expectations for .com and .net to not
have wildcards were all set many years ago, and it's the violation of those expectations that's got people angry enough to publish patchware about it. 


New versions of BIND 9.{1,2,3} have just been released:


The "Snubby" mail rejector daemon has been now upgraded to version 1.5!
It accepts EHLO and most SMTP commands, and looks RFC compliant. Once again for the BCP area we must account for this behavior and similar theoretical DNS issues in BCPs for spam tools and MUA/MTA authors.
Additionally, as per below log, it accepts mail addressed to <postmaster> as per section 4.5.1 of RFC 2821. It does not accept mail addressed to <postmaster(_at_)some-non-existing-domain(_dot_)com>, so misaddressed mail bounces UNLESS the sender's MTA/MUA uses the <postmaster> format. The mail log appears below: 

-------------snip------------
open 64.94.110.11 25

220 Snubby Mail Rejector Daemon v1.5 ready
HELO snubby.org
250 snubby
RSET
250 Ok
HELO snubby.org
250 snubby
MAIL FROM:<>
250 Ok
RCPT TO:<postmaster>
250 Ok
RCPT TO:<postmaster(_at_)nowoneoeoeoeoisherehehe(_dot_)com>
550 <unknown[68.27.148.70]>: Client host rejected: The domain you are
trying to
send mail to does not exist.
DATA
354 End data with <CR><LF>.<CR><LF>
Subject: ASRG test
From: research(_at_)solidmatrix(_dot_)com

This is a test for the ASRG - see www.irtf.org/asrg

.
250 Ok: queued as E449472F8
RSET
250 Ok
EHLO shdhdh.com
250-snubby
250-PIPELINING
250-SIZE 10240000
250-ETRN
250-XVERP
250 8BITMIME
RSET
250 Ok
QUIT
221 Bye

Connection to host lost.
-------------snip------------


_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  RE: [Asrg] 5. Challenge/Response Internetworking - DNS wildcards (was 7. BCP - Verisign: All Your Misspelling Are Belong To Us), Eric Dean
Next by Date:  [Asrg] 7. Best Current Practices - End-users, Yakov Shafranovich
Previous by Thread:  Re: [Asrg] 7. BCP - Verisign and wildcards, Jonathan Morton
Next by Thread:  [Asrg] 7. Best Practices - Service Providers (was: Fwd: against broken tld content), Brad Knowles
Indexes:  [Date] [Thread] [Top] [All Lists]