[62460] in North American Network Operators' Group
Re: Verisign suggestion
daemon@ATHENA.MIT.EDU (David B Harris)
Thu Sep 18 11:52:13 2003
Date: Thu, 18 Sep 2003 11:42:26 -0400
From: David B Harris <david@eelf.ddts.net>
To: nanog@merit.edu
In-Reply-To: <Pine.NEB.4.58.0309180823340.3593@server.duh.org>
Mail-Copies-To: nobody
Errors-To: owner-nanog-outgoing@merit.edu
--Multipart_Thu__18_Sep_2003_11_42_28_-0400_=.lcX/vFvWPqTrwN
Content-Type: text/plain; charset=US-ASCII
Content-Disposition: inline
Content-Transfer-Encoding: 7bit
On Thu, 18 Sep 2003 08:24:40 -0400 (EDT)
Todd Vierling <tv@duh.org> wrote:
> : > ...and for heavens sake, stop accepting any kind of request at all on port
> : > 25!! Just shut it down altogether. There is no reason for you to accept
> : > any connection of any kind on port 25!
>
> : If they don't accept anything on port 25, either by sending all packets
> : to /dev/null or by responding with SYN+RST ("Connection refused"), MTAs
> : everywhere will consider this a "temporary error."
>
> Then the wildcard should have included a MX that points to nowhere, rather
> than implementing a fake MTA that allows the MAIL FROM and RCPT TO addresses
> to be transmitted. The record "IN MX 0 ." is commonly used for this
> purpose.
Yeah, thanks for pointing this out. T'was an accidental omission in my
mail.
--Multipart_Thu__18_Sep_2003_11_42_28_-0400_=.lcX/vFvWPqTrwN
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)
iD8DBQE/adJkuCQ/g7GxJcARAnxDAJ4rzmRn328sR5oiS1SFNX+fHi5kUgCeNRJO
tVkgc+mHf09PXJ5VhtQBr/M=
=Sxdd
-----END PGP SIGNATURE-----
--Multipart_Thu__18_Sep_2003_11_42_28_-0400_=.lcX/vFvWPqTrwN--
