Mail PTR Records

Peter Farrow peter at farrows.org
Mon Mar 3 22:51:55 GMT 2008


Matt Kettler wrote:
> Richard Frovarp wrote:
>> Peter Farrow wrote:
>>> Matt Kettler wrote:
>>>> mikea wrote:
>>>>> On Mon, Mar 03, 2008 at 01:15:21PM -0600, Nathan Olson wrote:
>>>>>> It's not RFC-compliant.
>>>>>
>>>>> As has been mentioned elsethread, a number of techniques which are 
>>>>> increasingly necessary for survival are not RFC-compliant.
>>>>> Many RFCs were written when the Internet was kinder, gentler, and 
>>>>> MUCH
>>>>> less dangerous than it is now. They have not changed, though the 'Net
>>>>> certainly has. Blind adherence to them in the face of evidence 
>>>>> that that adherence opens windows of vulnerability is not 
>>>>> necessarily dood
>>>>> or wise.
>>>>
>>>> Well, that alone isn't a good reason to blindly toss RFC's aside. 
>>>> Some requirements of the RFCs are there for damn good reasons.
>>>>
>>>> However, in this case I suspect the activity isn't even a violation 
>>>> of an RFC, and not having a PTR record clearly violates their 
>>>> recommendations (albeit not their requirements).
>>>>
>>>> In general, it's really easy to claim something isn't complaint 
>>>> with the RFCs without any evidence to support it. We should all 
>>>> take such suggestions (including those generated by me) as 
>>>> unsubstantiated opinions until proven otherwise..
>>>>
>>>>
>>>>
>>>>
>>>>
>>> http://tools.ietf.org/html/rfc1912
>>>
>>> Its an RFC to have a matching forward and revserse DNS lookup, so 
>>> not having one or a mismatched one is a violation of RFC1912
>>>
>>> To quote, verbatim,
>>>
>>> "Every Internet-reachable host should have a name. The consequences 
>>> of this are becoming more and more obvious. Many services available 
>>> on the Internet will not talk to you if you aren't correctly 
>>> registered in the DNS. Make sure your PTR and A records match. For 
>>> every IP address, there should be a matching PTR record in the 
>>> in-addr.arpa domain."
>>>
>>> So you can legitimately bounce the email if the sending host has bad 
>>> forward/reverse DNS...
>>>
>>> Regards
>>>
>>> Pete
>>>
>> What does "should" mean? should vs shall vs must isn't always the 
>> same thing.
>
> Agreed, should is not the same as must.
>
> There's an RFC that specifies exactly how should and must are to be 
> interpreted in RFC documents.  There is no RFC standard for "shall".
>
> http://www.ietf.org/rfc/rfc2119.txt
>
>
> --------------
> 3. SHOULD   This word, or the adjective "RECOMMENDED", mean that there
>    may exist valid reasons in particular circumstances to ignore a
>    particular item, but the full implications must be understood and
>    carefully weighed before choosing a different course.
> --------------
>
>
>
>
brilliant.  Didn't know about this RFC but I already knew what "should" 
means...

For those still in any doubt you mind find this page useful,

http://www.englishpage.com/modals/should.html

If you're still having trouble, this may be more appropriate

http://www.bbc.co.uk/cbeebies/metoo/colour/

;-)



More information about the MailScanner mailing list