http://tools.ietf.org/html/draft-moonesamy-smtp-vrfy-ddds-00
I don't see this draft being discussed yet, but do have a couple of comments. 1. AFAIK, the only "security problem" with SMTP VRFY was information leakage, i.e. that it provides a simple means to check which local parts are valid without actually sending an e-mail. Your proposal does the same, and makes it even easier. Is my understand correct, and if so, what's your intent? 2. There is no reference to the need to treat a '.' in the local part as part of the label, and not a label separator. DNS guys know this, e-mail implementers may not... regards, Ray -- Ray Bellis, MA(Oxon) MIET Senior Researcher in Advanced Projects, Nominet e: [email protected], t: +44 1865 332211
