[69258] in North American Network Operators' Group
Re: the value of reverse address lookups?
daemon@ATHENA.MIT.EDU (Valdis.Kletnieks@vt.edu)
Thu Apr 1 10:24:12 2004
To: "Douglas F. Calvert" <douglist@anize.org>
Cc: nanog@nanog.org
In-Reply-To: Your message of "Wed, 31 Mar 2004 19:21:43 EST."
<1080778903.833.57.camel@liberate>
From: Valdis.Kletnieks@vt.edu
Date: Thu, 01 Apr 2004 10:21:47 -0500
Errors-To: owner-nanog-outgoing@merit.edu
--==_Exmh_1302837317P
Content-Type: text/plain; charset=us-ascii
On Wed, 31 Mar 2004 19:21:43 EST, "Douglas F. Calvert" <douglist@anize.org> said:
> justification for this practice? In my opinion it does not appear to
> increase the validity of the connection. But I may be missing something
It tells you that the connection is coming from a netblock managed by somebody
with enough clue and motivation to get PTR records right. If the site can't
even get that right, they're probably lacking in logging/auditing and the like
as well.
As a result, it's a pretty safe bet that if your site policy says you'll go
looking for somebody if there's a problem with the connection, you might as
well drop the connection early on, because nobody's answering the cluephone at
the remote end...
As far as SMTP goes, it's surprising (barely) how often you get "MX points to myself"
errors back from sites that don't have a valid PTR either....
--==_Exmh_1302837317P
Content-Type: application/pgp-signature
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Exmh version 2.5 07/13/2001
iD8DBQFAbDOLcC3lWbTT17ARAhq2AKCRlNUOk/p765ywiY5r5bUdApD/JwCg1usE
mIgspkqjm4YI0atUCck6fis=
=CqVb
-----END PGP SIGNATURE-----
--==_Exmh_1302837317P--
