ietf-dkim
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [ietf-dkim] why we should clearly specify domain existence

2008-05-26 15:48:16
from [Eliot Lear] [Permanent Link] 
Wietse,

DNS lookup alone cannot validate an author domain, so one might
just as well use the least complicated mechanism. The SSP NXDOMAIN
check is sufficient; the RFC 2821 section 5 MX/A/AAAA lookups create
overhead without actual security benefit.
  


First of all for any reasonable implementation the query itself is "IN 
ANY", as anything else would add unnecessary network latency.  That just 
leaves the answer.  In many cases you'll want many parts of the answer 
already.  But beyond this, modern email systems score messages.  I'll 
predict that hosts without valid MX records are going to be weighted 
toward spam.  Are you saying that's not worth anything?

Eliot

_______________________________________________
NOTE WELL: This list operates according to 
http://mipassoc.org/dkim/ietf-list-rules.html
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [ietf-dkim] why we should clearly specify domain existence, Wietse Venema
Next by Date:  Re: [ietf-dkim] draft-levine-dkim-adsp-00, Stephen Farrell
Previous by Thread:  Re: [ietf-dkim] why we should clearly specify domain existence, Wietse Venema
Next by Thread:  Re: [ietf-dkim] why we should clearly specify domain existence, Tony Finch
Indexes:  [Date] [Thread] [Top] [All Lists]