John Levine wrote:
You might also mention how many DNSBLs there are.
How could anyone tell? They pop up and disappear dailt.
The point wasn't a specific number, but rather that there are a lot of
them. But maybe this is an operational concern, out of scope for this
document.
Section 3 should mention the need for some sort of email authentication
in order for the domain name to be meaningful.
Actually, the most common use of domain name DNSBLs is for the names
found in URLs in the bodies of spam, which doesn't need any
authentication.
It isn't at all clear that section 3 is talking about URLs. On the
contrary, the example of fred(_at_)invalid(_dot_)edu is clearly not a URL, and
the
term "right hand side blacklist" doesn't sounds like a URL either. Side
note: the document will be dinged for using anything other than RFC
2606 hostnames in examples.
Authentication only matters if you're whitelisting by sender, but I
don't know of anyone using DNSWLs for that.
We hope this will change with the wider deployment of authentication.
-Jim
_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg