[166156] in North American Network Operators' Group
Re: comcast ipv6 PTR
daemon@ATHENA.MIT.EDU (Chris Adams)
Wed Oct 9 21:19:26 2013
Date: Wed, 9 Oct 2013 20:18:17 -0500
From: Chris Adams <cma@cmadams.net>
To: Barry Shein <bzs@world.std.com>
Mail-Followup-To: Barry Shein <bzs@world.std.com>, nanog@nanog.org
In-Reply-To: <21077.65231.279689.263778@world.std.com>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org
Once upon a time, Barry Shein <bzs@world.std.com> said:
> It's very useful for blocking spammers and other miscreants -- no
> reason at all to accept SMTP connections from troublesome
> *.rev.domain.net at all, no matter what the preceding NNN-NNN-NNN-NNN
> is.
If you are going to block like that, just block anybody without valid
reverse DNS. If you don't trust provider foo.net to police their users,
why trust them to put valid and consistent xx-xx-xx-xx.dyn.foo.net
reverse?
I only see a use for reverse DNS for router interfaces (for useful
traceroute info) and servers (and only really SMTP servers). Most of
the rest is fluff, often out-of-date, uselessly auto-generated, etc.
--
Chris Adams <cma@cmadams.net>
