On 2011-05-27 13:23:29 -0400, darxus(_at_)chaosreigns(_dot_)com wrote:
On 05/26, John Levine wrote:
Indeed, but basically nobody serves DNSBLs from servers that use BIND
style zone files and wildcards, so it's unlikely to be an issue in
practice.
The link I included provided examples of where it's a problem in practice:
https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6484#c25
TXT records for:
2.6.5.e.5.6.e.f.f.f.9.0.d.1.2.0.5.0.0.0.2.0.0.0.0.0.6.1.1.0.0.2.asn.routeviews.org.
asn.routeviews.org is documented to map IPv4 addresses to ASNs. No
mention of IPv6 addresses.
2.6.5.e.5.6.e.f.f.f.9.0.d.1.2.0.5.0.0.0.2.0.0.0.0.0.6.1.1.0.0.2.origin.asn.cymru.com.
origin.asn.cymru.com is documented to map an "IP address or prefix" to
an ASN. While an "IP address" could be either IPv4 or IPv6, the fact
that the examples show only IPv4 and that there is also an
origin6.asn.cymru.com for IPv6 addresses is a strong hint that only IPv4
addresses are meant here.
Looks like user error in both cases to me. I would agree that both
queries should return NXDOMAIN instead of a useless result, though.
hp
--
_ | Peter J. Holzer | Web 2.0 könnte man also auch übersetzen als
|_|_) | Sysadmin WSR | "Netz der kleinen Geister".
| | | hjp(_at_)hjp(_dot_)at |
__/ | http://www.hjp.at/ | -- Oliver Cromm in desd
signature.asc
Description: Digital signature
_______________________________________________
Asrg mailing list
Asrg(_at_)irtf(_dot_)org
http://www.irtf.org/mailman/listinfo/asrg