[62661] in North American Network Operators' Group
Re: VeriSign SMTP reject server updated
daemon@ATHENA.MIT.EDU (Owen DeLong)
Sat Sep 20 17:57:17 2003
Date: Sat, 20 Sep 2003 14:56:41 -0700
From: Owen DeLong <owen@delong.com>
To: "Eric A. Hall" <ehall@ehsco.com>,
Matt Larson <mlarson@verisign.com>
Cc: nanog@nanog.org
In-Reply-To: <3F6CB35B.8050908@ehsco.com>
Errors-To: owner-nanog-outgoing@merit.edu
Correction:
They need to pull themselves out of the loop on this and allow DNS
to work as intended.
Owen
--On Saturday, September 20, 2003 3:06 PM -0500 "Eric A. Hall"
<ehall@ehsco.com> wrote:
>
>
> on 9/20/2003 1:01 PM Matt Larson wrote:
>
>> We are interested in feedback on the best way within the SMTP protocol
>> to definitively reject mail at these servers.
>
> You need to:
>
> 1) fatally reject mail for domains that are not delegated with 5xx
>
> -and-
>
> 2) softly reject mail for domains that are delegated with 4xx so
> the messages are requeed and may get to an authorized server on
> the next run
>
> Used to be able to use DNS for this.
>
> --
> Eric A. Hall http://www.ehsco.com/
> Internet Core Protocols http://www.oreilly.com/catalog/coreprot/
>
