-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
- -----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
william(at)elan.net wrote:
On Tue, 7 Feb 2006, Dave Crocker wrote:
oh boy.
Mailbox NAT.
So much for end-to-end.
This isn't something new at all as you probably know. And sendmail has
had email address rewriting and masquerading rulesets for years...
Yes. And we've been doing email address rewriting for over a decade
(internal versus external forms. Internally, my email address isn't
clewis(_at_)nortel(_dot_)com).
But... Before you do such a thing, consider what it does to S/Mime etc
(breaks it), and consider what you do with internal names that leak.
Multiplying your spam-cross-sectional-area Etc.
It's a hideous mess, and we're still paying for it.
Ick.
It's almost as bad as stealing someone else's IP space for your internal
(BIG!) network, and then trying to use a non-NATting firewall to the
Internet. [Fortunately, we didn't fall for that trap. An /8 is a big
thing to renumber.]
- -----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3-nr1 (Windows 2000)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iQCVAwUBQ+j/sJ3FmCyJjHfhAQLadQP9H9HlbQsXM/hC/2jsIZhl6TVgUMno3i5i
g4dWWKPtexka9Qx/Fz1dXn1aY5qmDUYPJ9T0ruAnOPD/k51ncfoaVZFzHnBWekha
7t8kahWRUWF8oWOgQA+Jkuxn62xO/xz6aN3ebkRTkjLNJMXkmcuhKPkeZxObk53i
5cJEH14F3dc=
=lf8m
- -----END PGP SIGNATURE-----
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3-nr1 (Windows 2000)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org
iQCVAwUBQ+kYv53FmCyJjHfhAQIIYgQA8EUl83xEZkiKf324krqQTVHihVwLi02U
FCyW/23xroUXt77o0pMPru4+kXGu0HIvLFth1OxzHmAoo9KYz6RjiIHIQNGJyi12
gW+j1dCEDksSw9tTSURvOEhyGyg+QczpR5V7Lo+m3HAQzOsJ6xtVJZhM/s9L9Fbd
BYvyymz9X08=
=gNan
-----END PGP SIGNATURE-----
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg