spf-discuss
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: Validator Testing Request

2005-08-08 22:17:01
from [wayne] [Permanent Link] 
In <CAE6919D-16A3-408E-9DD5-1433206DDDB0(_at_)electrophobia(_dot_)com> Richard 
Parker <richard(_at_)electrophobia(_dot_)com> writes:


On Aug 8, 2005, at 6:10 AM, Scott Kitterman wrote:

If any of you who have macros in your SPF records would take a
moment to try it out and let me know what you find, I'd appreciate
it.


On Aug 8, 2005, at 7:40 AM, Herb Martin wrote:

I cannot help with the macros (sorry) but my domain gives this
(final) result after resolving part of my (fairly complex) SPF:

<snip>

Results - PermError SPF Permanent Error: Too many DNS lookups


I too get that error, in my case with the "electrophobia.com"  domain.
I did a quick manual "hand count" for electrophobia.com and  unless
I'm making some sort of error, I think it is at the 10 DNS  lookup
limit.  Scott, does your validator perhaps count identical PTR
lookups more than once or something like that?

Here is what I think is the count of DNS requests for this domain.
Did I miss one?

1) TXT electrophobia.com:
    "v=spf1 ptr:cox.net include:dsis.net include:easydns.com -all"
2) PTR _connect_ip_
3) TXT dsis.net: "v=spf1 mx -all"
4) MX dsis.net: mail.dsis.net
5) A mail.dsis.net: 66.166.123.29


The A lookup for the mx mechanism doesn't count against the limit, so
you have overcounted by one here.  The count is 4, not 5.


6) TXT easydns.com:
    "v=spf1 mx ptr ip4:205.210.42.0/24 ip4:216.220.40.240/29
    ip4:66.207.199.35/32 include:myprivacy.ca ptr:opensrs.net
    ptr:registrarmail.net ptr:internetsecure.com ~all"
7) MX easydns.com: mail.easydns.com
8) A mail.easydns.com: 205.210.42.42


Ditto, here is another overcount, so the count is 6, not 8.

However, the ptr *does* count.  This ptr lookup is not the same as the
one in 1) because it refers to easydns.com, not cox.net.  Even if it
was the same, they would both count.

So, now we are back up to 7



9) TXT myprivacy.ca: "v=spf1 a:tex.privateworld.com"
10) A tex.privateworld.com: 209.61.155.107


Ok, you still need to count the ptr:opensrs.net ptr:registrarmail.net
ptr:internetsecure.com mechanisms, so add three and we are up to 12.


I think maybe someone should contact easydns and see if they can
reduce the number of lookups in their record.  ptr lookups, in
particular, can be pretty expensive and should be avoided if you can.


-wayne
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  'OpenSPF.org' Domain Name Transfer successfully completed, James Couzens
Next by Date:  Re: Transfer of the 'OpenSPF.org' domain name, Greg Connor
Previous by Thread:  Re: Validator Testing Request, Richard Parker
Next by Thread:  Re: Validator Testing Request, Richard Parker
Indexes:  [Date] [Thread] [Top] [All Lists]