[113003] in North American Network Operators' Group
Re: REVERSE DNS Practices.
daemon@ATHENA.MIT.EDU (Luke S Crawford)
Sat Mar 28 03:07:14 2009
To: nanog@nanog.org
From: Luke S Crawford <lsc@prgmr.com>
Date: 28 Mar 2009 03:12:22 -0400
In-Reply-To: <20090321130055.GA5782@vacation.karoshi.com.>
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
bmanning@vacation.karoshi.com writes:
> or - the more modern approach is to let the node (w/ proper authorization)
> do a secure dynamic update of the revserse map - so the forward and reverse
> delegations match. ... a -VERY- useful technique.
I have a question. Is this an abuse problem? some ISPs require their domain
to be in the rdns in an effort to herd abuse reports to the correct org.
Is this generally considered useless? Is it generally considered OK to
hand relatively untrusted users the keys to their own rdns?
(I'm forcing my own customers to have a rdns of something.xen.prgmr.com
for several months, Much to the chagrin of many presumably innocent and
legitimate customers. )
