Re: Queued Mail or Unreturnable Mail?



On Apr 30, 2008, at 7:02 PM, Frank Ellermann wrote:

2821 and 2821bis have it clear that the mere presence of a listeningprocess does not say anything about the intent to receive mail forthe corresponding domains. The MX can say something else, withoutMX a listening process at A or AAAA can reject clients or individualmails as it sees fit.
The problematic situation is the absence of MX and listeningprocess, senders are forced to wait 100 hours, somebody might findthe reboot button of the affected host. Another problematicsituation is mail claiming to be "from" this domain without MX,receivers cannot wait until somebody finds the reboot button for aquick plausibility test, they are forced to reject such suspiciousmails temporarily.

Since DARPA's development of a "network of networks" became known asthe Internet, and intercommunication processes known as Internetprotocols (IP), a means to relate hostnames and services with IPaddresses was needed. Jon Postel publish a concept of Sockets(combing network address and port) in use with assignments forstandard programs, laying a foundation on efforts made by Steve Carrfrom Utah, Jeff Rulifson from SRI, and Steve Crocker of UCLA, whointroduced documents describing host networking almost four decades ago.

The next decade introduced RFC761 TCP, RFC768 UDP, and RFC790 Assignednumbers. Within a few years, RFC1034 DNS supplanted host files. WithDNS, in addition to port assignments, service support could bedeclared using specialized DNS resource records. RFC974 recommendedWKS (well known service) resource records to confirm support of SMTP.RFC1123 renounced WKS, as few domains published these records. Theresource record concept did not mesh with host files, or NetBIOSadaptation of WINS's offering referrals from specific service names.

To help transitioning from WINS to DNS, SRV records were created.Even with SRV records, Window's adoption of DNS remained limited.Within a Window's enterprise environment, DNS might be converted intoRPC. Avoiding proprietary development for this environment, protocolsoften employ only the limited list of resource records having datastructures defined for Windows OS APIs. While API provisions nowaccommodate undefined resources records, a lack of OS data structuredefinitions remains an impediment.

Resolving services and hostname addresses, generic resource recordsholding signatures and policies continues to impact SMTP. AlthoughSMTP adopted MX resource records within DNS, publishing MX records wasunfortunately never mandated. While ensuring the viability of localhostname resolution remains important, undesired traffic associatedwith spoofed email addresses represents an ever increasing problem.However, there does not appear to be an easy method to differentiatename services when resolving an address. Facing massive amounts ofundesired traffic, SMTP reception typically employes extensiveexamination of SMTP client IP addresses and return-path email-addresses.

Therefore, it should be reasonable to publish an RFC that warns ofpossible future changes where message acceptance may require return-path email-address domains to publish MX records. Mandating MXrecords be published by domains supporting SMTP better protectsdomains not supporting SMTP, and better ensures integration of IPv6addresses. The MX mandate also replaces unofficial recommendationsthat domains not supporting SMTP publish bogus MX records targetingroots. This mandate would help establish conventions for receivingSMTP servers to predicate additional transactions upon first findingMX records for associated email-address domains. The receiving SMTPserver is also best equipped at making necessary exceptions whereneeded.

In essence, SMTP discovery resource record mandate essentially impactsmessage reception. Justification for this mandate could be to supportthe obligation accepted by receiving SMTP servers of ensuring deliveryor offering notification upon a delivery failure.


-Doug