Re: Re: DNS Query Format

At 03:08 AM 3/28/2005 +0200, Frank wrote:

David MacQuigg wrote:

[radically snipping all, Radu burnt my SPF energy for today]

If you want new queries based on FQDN + IP please read the SIQ
draft, and maybe start a server translating SIQ queries into
traditional SPF evaluations (warning, the server gets the load).

It's the same idea as collecting MTAMARK details into a Dyn-IP
RBL, so that MTAs can continue to use RBLs, while IP-owners can
start to publish MTAMARKs.

The concept of a gateway.  Of course you can add many bells and
whistles, e.g. a closed-user-group for the SIQ server based on
SPF.  The funny part, the SIQ idea could even support PRA-style
queries.  And SURBL.  And RFCI.  And repudiation.  As long as
it's (FQDN + IP) => result it cando.  I'm stunned that nobody
loves it immediately.  And why they don't use SPF for a demo.

Frank, as usual I can understand only about 10% of what you write:>( However, the draft-irtf-asrg-iar-howe-siq-01 is quiteinteresting. Thanks for the lead.

This does seem like an alternative that avoids all the worries aboutloading DNS, etc., and provides the straightest possible path to thedesired information - should I accept this email. As I understand it, areceiver (or forwarder) sends a simple query including the senders IPaddress and domain, and the service answers by not only authenticating thedomain name, but providing whatever is known about the reputation of thatdomain. I'll bet Google could provide a service like this very effectively.

The service would still need to query DNS to get the SPF record for adomain (and maybe compile it to a list of IPs), but that would only be donemaybe once a day. They could even provide a cache on the client side, as adownloadable plug-in.


-- Dave

************************************************************     *
* David MacQuigg, PhD      email:  dmquigg-spf at yahoo.com      *  *
* IC Design Engineer            phone:  USA 520-721-4583      *  *  *
* Analog Design Methodologies                                 *  *  *
*                                   9320 East Mikelyn Lane     * * *
* VRS Consulting, P.C.              Tucson, Arizona 85710        *

************************************************************ *

<Prev in Thread]	Current Thread	[Next in Thread>
RE: DNS Query Format, (continued) RE: DNS Query Format, Scott Kitterman Re: DNS Query Format, David MacQuigg Re: DNS Query Format, Radu Hociung Re: DNS Query Format, David MacQuigg Re: DNS Query Format, Chris Haynes Re: DNS Query Format, william(at)elan.net Re: DNS Query Format, David MacQuigg Re: DNS Query Format, Chris Haynes Re: DNS Query Format, David MacQuigg Re: DNS Query Format, Frank Ellermann Re: Re: DNS Query Format, David MacQuigg <= Re: DNS Query Format, Frank Ellermann Re: Re: DNS Query Format, Graham Murray SPF -01pre and other creatures (was: DNS Query Format), Frank Ellermann Standard Authentication Query, David MacQuigg RE: Standard Authentication Query, Scott Kitterman RE: Standard Authentication Query, David MacQuigg RE: Standard Authentication Query, Scott Kitterman RE: Standard Authentication Query, george+spf RE: Standard Authentication Query, David MacQuigg RE: Standard Authentication Query, Scott Kitterman