On Tue 26/Jun/2012 13:14:34 +0200 Jan Ingvoldstad wrote:
> On Tue, Jun 26, 2012 at 12:52 PM, Sam Varshavchik
> <mr...@courier-mta.com <mailto:mr...@courier-mta.com>> wrote:
> 
>     There are no prescribed means for handling bad DNS data. If DNS is
>     wrong, one cannot have any expectation that it will work in any
>     particular way, even if some parts of it are correct.
> 
> That's not quite correct, there are prescribed means for handling bad
> DNS data in the context of Internet mail delivery.

> http://tools.ietf.org/html/rfc5321#section-5
> 
> To put it briefly: it would appear that the RFC authors think that the
> good old "be tolerant in what you accept" principle still applies, and
> it would not be unreasonable for an MTA to skip a broken MX record and
> try the other record(s), if any.

I'd be curious to know where would that tolerance be expressed in the
section you refer.  I'd guess because it says:

                                      If MX records are present, but
 none of them are usable, this situation MUST be reported as an error.

Thus, since in the above case one of them seems to be usable, one can
derive that it is not mandatory to report that as an error.  However,
the next paragraph says clearly what to expect:

 When a domain name associated with an MX RR is looked up and the
 associated data field obtained, the data field of that response MUST
 contain a domain name.  That domain name, when queried, MUST return
 at least one address record (e.g., A or AAAA RR) that gives the IP
 address of the SMTP server to which the message should be directed.
 Any other response [...] lies outside the scope of this Standard.

> However, it would perhaps not be unreasonable to say "bah, screw you
> guys, I'm going home" either.

Indeed.  For example, Lucio's server could have matched the bad MX 20
of domain.com, unable to recognize its own IP address because it sits
behind a NAT, and unable to recognize its own name since the DNS hid
it.  If it had used the good MX record by default, it would have
violated the SMTP prohibition to relay to a host at the same
preference level.

-- 






































------------------------------------------------------------------------------
Live Security Virtual Conference
Exclusive live event will cover all the ways today's security and 
threat landscape has changed and how IT managers can respond. Discussions 
will include endpoint security, mobile security and the latest in malware 
threats. http://www.accelacomm.com/jaw/sfrnl04242012/114/50122263/
_______________________________________________
courier-users mailing list
courier-users@lists.sourceforge.net
Unsubscribe: https://lists.sourceforge.net/lists/listinfo/courier-users

Reply via email to