On 15-Feb-07, at 3:40 PM, Steve Atkins wrote:
A standard "listed" test entry and standard "not listed" test
entry are a good way to test that. Standard practice right now
usually uses 2.0.0.127.dnsbl.example.com or some variant as the
"always listed" address - adding a requirement for a "never
listed" address would be a good way to implement an additional
check to make sure the DNSBL is still active, and hopefully that
it's not listing the world. I'm not sure that we have a standard
convention for a "never listed" test address (one that should
always return a whitelist record or NXDOMAIN depending on the type
of list.)
1.0.0.127.
There. We have an always listed and a never listed address that are
already done by the vast majority of blacklists[1]. All we need is
client side support for those two checks and we're done.
Yup, this was suggested earlier in this thread (before it diverged
into the timeout thread) and I think it's a worthwhile addition to
the DNSBL.
______________________________________________________________________
This email has been scanned by the MessageLabs Email Security System.
For more information please visit http://www.messagelabs.com/email
______________________________________________________________________
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg