[62706] in North American Network Operators' Group
Re: VeriSign SMTP reject server updated
daemon@ATHENA.MIT.EDU (Stephen J. Wilcox)
Sun Sep 21 06:09:05 2003
Date: Sun, 21 Sep 2003 10:08:27 +0000 (GMT)
From: "Stephen J. Wilcox" <steve@telecomplete.co.uk>
To: "Eric A. Hall" <ehall@ehsco.com>
Cc: Matt Larson <mlarson@verisign.com>, <nanog@nanog.org>
In-Reply-To: <3F6CB35B.8050908@ehsco.com>
Errors-To: owner-nanog-outgoing@merit.edu
On Sat, 20 Sep 2003, Eric A. Hall wrote:
> on 9/20/2003 1:01 PM Matt Larson wrote:
>
> > We are interested in feedback on the best way within the SMTP protocol
> > to definitively reject mail at these servers.
>
> You need to:
>
> 1) fatally reject mail for domains that are not delegated with 5xx
>
> -and-
>
> 2) softly reject mail for domains that are delegated with 4xx so
> the messages are requeed and may get to an authorized server on
> the next run
>
> Used to be able to use DNS for this.
I had a thought, its a hack but..
What if you change the behaviour of the GTLD named daemons to return an NXDOMAIN
response to any MX queries on non-existent domains, you will then take this
whole debate on SMTP out of the equation ...
Steve
