On 22 Nov 2013, at 09:40, Ralph Meijer <[email protected]> wrote: > David Banes <[email protected]> wrote: >> >> On 22 Nov 2013, at 09:23, Simon Tennant <[email protected]> wrote: >>> >>> - @server-developers: is there any way to whitelist gmail.com and >> all >>> Google Apps Domains? - that way it's an operator decision if they >> choose to >>> whitelist. What I mean is something like "If the SRV record points >> to >>> xmpp-server.l.google.com and the alt domains, then use cleartext" >> Is >>> this even possible? >>> >> >> In the hosted email world we use white lists with custom connection >> profiles for various odd domains that we want or need to connect to and >> don't operate as they should. or to best practice. > > The problem here is that whitelisting domains is cumbersome. You need to > figure out if a domain is hosted by Google or not by resolving de SRV > records, while respecting TTLs. >
I understand that, but it's no more than having to lookup an MX record to see which host(s) is handing an email domain. We've not had to do it before so it'll be some work to get it working well, which if course none of us have time to do:) David.
signature.asc
Description: Message signed with OpenPGP using GPGMail
