On Jan 30, 2006, at 12:26, Andrew Sullivan wrote:
I don't think that's a fair characterisation of what the sysadmins are doing. They want a way to tell, on balance, whether their trust limits are met for inbound connections. It's a probabilistic, not a binary, matter. In some cases, they can afford to reject possibly good traffic in favour of reduced traffic. Making such decisions is their job; that's why they're called "admins".
Well this sysadmin has kludged their mail server to drop SMTP connections from hosts that don't have a reverse DNS entry. [ie: No PTR record, no service.] This is remarkably effective at reducing spam and doesn't seem to create too many false positives. If this policy has the side effect of getting people to fix their reverse DNS, then that's an added bonus.
. dnsop resources:_____________________________________________________ web user interface: http://darkwing.uoregon.edu/~llynch/dnsop.html mhonarc archive: http://darkwing.uoregon.edu/~llynch/dnsop/index.html
