In <20040129184211(_dot_)GY7601(_at_)dumbo(_dot_)pobox(_dot_)com> Meng Weng
Wong <mengwong(_at_)dumbo(_dot_)pobox(_dot_)com> writes:
On Thu, Jan 29, 2004 at 12:26:57PM -0600, wayne wrote:
|
| I guess I come from a compiled language background and am thinking
| ahead to the idea of having an SPF DNS record with syntax checking at
| the zone load time.
[simple 'a' and 'mx' snipped]
It can't do much more than that. It could maybe try to figure out if
the arguments to "a" and "mx" happen to be names that it's authoritative
for, but that just seems like work.
Yeah, there is some programing involved and a little bit of cpu
consumed by the DNS server to determine all the additional records
that it could send. However, that is cheap compared with sending
extra DNS queries.
Take:
example.com TXT "v=spf1 mx:mail.example.com include:example.net -all"
A dns server could send all information needed to resolve this query
in one packet instead of who knows how many.
A SPF RR could also be made much more compact if all mechanisms can be
recognized at "compile" time rather than "run time".
-wayne
-------
Sender Permitted From: http://spf.pobox.com/
Archives at http://archives.listbox.com/spf-discuss/current/
Latest draft at http://spf.pobox.com/draft-mengwong-spf-02.9.4.txt
Wiki:
http://spfwiki.infinitepenguins.net/pmwiki.php/SenderPermittedFrom/HomePage
To unsubscribe, change your address, or temporarily deactivate your
subscription,
please go to
http://v2.listbox.com/member/?listname(_at_)©#�«Mo\¯HÝÜîU;±¤Ö¤Íµø�?¡