Radu Hociung wrote:
Do you think one limit is enough?
In the discussions between draft-lentczner and draft-schlitt I
wanted one limit for an DNS query counter, but Wayne preferred
his three limits (mechanisms / MX / PTR), and with the single
magic number "10" that was IMHO acceptable.
With one limit like say 40 queries some policies, which now
(classic-00) could result in PermError would be "okay" again,
and vice versa. And if you'd introduce _four_ limits with
different magic numbers absolutely nobody would understand it:
Implementations would then just do whatever they like. That's
bad, let's keep Wayne's 3 * 10 magic. It already forces RR and
POBOX to simplify their policies.
one of the features I'm planning for the libspf2 1.0.6
release is an optimizer. The optimizer would take in an SPF
record, and print out the minimalist equivalent SPF record,
That's a nice idea. You could flag redundant IPs (covered by
more than one mechanism), find a minimal CIDR variant, etc.
That sounds more like an application than library functions.
Bye, Frank