Re: [Asrg] What are the IPs that sends mail for a domain?
2009-07-01 14:40:16
John Leslie wrote:
[For accountability, I'd use] a domain name. One reason is that
large ESP have many MTAs that can be used interchangeably. In
addition, the person responsible for an MTA is not always identifiable
(in Italy, the mandate to state who are the sysadmins of an MTA is
being procrastinated every few months, since November 2008.) By
contrast, domain registrants often have whois records pointing to them.
I think I'm catching on: you want to link the MTA to a _registered_
domain.
Yup. However, no official registration exists for, say, us.ibm.com or
it.ibm.com. The latter two ones happen to have different hostmaster
addresses, therefore it would not be correct for them to share the
same accountability token "ibm.com". I can only trust the DNS about
the legitimacy of such subdomain delegations.
OTOH, I don't know from the DNS whether a domain is registered at a
reputable registry.
You should, IMHO, say so in the I-D: "domain" by itself doesn't
convey the idea of "registered domain".
Thanks, I will.
RFC5068 deals with the operation of Mail Submission Agents. I don't agree
it even "suggests" how accountability should follow the message as it
winds its way to the recipient.
It does. Notwithstanding the sentence you quoted, there is a
"Submission Accountability after Submission" paragraph in section 3.1,
saying
For a reasonable period of time after submission, the message
SHOULD be traceable by the MSA operator to the authenticated
identity of the user who sent the message.
This deals _only_ with logging practices (or whatever magic) of the
operators of the Mail Submission Agent -- it implies nothing about
MTAs that may relay the message.
I thought "traceable" implied there is some token, such as Message-ID,
that is logged on both submission and relay, so that one can retrace
the path that a message took. Or would that have been termed
"trackable", or whatever, instead?
I do not believe that you'll know any better by linking to a
registered domain, but YMMV.
Agreed. If it is neither worse, it can be used interchangeably with IP
based info, depending on convenience.
_______________________________________________
Asrg mailing list
Asrg(_at_)irtf(_dot_)org
http://www.irtf.org/mailman/listinfo/asrg
|
|