[29918] in North American Network Operators' Group
Re: RBL-type BGP service for known rogue networks?
daemon@ATHENA.MIT.EDU (Shawn McMahon)
Sun Jul 9 20:53:27 2000
Date: Sun, 9 Jul 2000 20:51:23 -0400
From: Shawn McMahon <smcmahon@eiv.com>
To: nanog@merit.edu
Message-ID: <20000709205123.A22212@eiv.com>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-md5;
protocol="application/pgp-signature"; boundary="qDbXVdCdHGoSgWSk"
Content-Disposition: inline
In-Reply-To: <20000710002423.5F332E0@proven.weird.com>; from woods@weird.com on Sun, Jul 09, 2000 at 08:24:23PM -0400
Errors-To: owner-nanog-outgoing@merit.edu
--qDbXVdCdHGoSgWSk
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Content-Transfer-Encoding: quoted-printable
On Sun, Jul 09, 2000 at 08:24:23PM -0400, Greg A. Woods wrote:
>=20
> > Yes, but you're so paranoid that you don't accept email from boxes that=
HELO
> > themselves as a CNAME.
> =20
> actually that's for a different reason -- and no I don't believe in
> allowing for contradictions in the RFCs! ;-)
Unfortunately, it allows for contradictions in this discussion.
At least one pro-ORBS person has stated that individuals should make direct
SMTP connections instead of using their provider's server, and they could t=
hus
avoid being subject to ORBS testing of their provider.
Oh, but sorry; if I do that, I can't send Greg A. Woods email, because his =
system
doesn't recognize the value in my system having the name "oa.eiv.com" all t=
he
time, instead of me hacking together sed scripts to change my sendmail conf=
ig
to read something like "user1432.fl.sprint-hsd.net" every time I get a new
dynamic IP.
My SMTP server doesn't relay, PLUS it's firewalled to block inbound connect=
ions
entirely except for where I want them to come from.
But I still can't email various ORBS people because they're a bunch of para=
noids.
If I switch to using my provider's SMTP server, now I have a security issue
because it's going through a server I don't control and which could conceiv=
ably
screw up and get itself ORBS-listed at any moment, completely outside my co=
ntrol.
So, one way I risk not being able to email people, and the other way I risk=
the
same thing.
Screw it; I will run my systems the way I see fit. ORBS can go wall themse=
lves
off from the Internet as much as they like. Hell, be like Fidonet if you w=
ant
and try to pretend the Internet doesn't exist or is just a fad.
Maybe I'll open my server up to relay; since it jumps around, you won't be =
able
to lock it off without cutting off the entirety of Sprint's DSL lines.
--qDbXVdCdHGoSgWSk
Content-Type: application/pgp-signature
Content-Disposition: inline
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.1 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE5aR4LEcl9bQ0RMt0RAtlTAJ9gRDKOvLA/6hWQBAUV+WtEDNdipQCePxhb
d9Y0wgJWEq/6c68CzH5sLt4=
=IGea
-----END PGP SIGNATURE-----
--qDbXVdCdHGoSgWSk--