now the only problem will be writing your design into an RFC and all that. Instead of SPF, you could call it RWB for Recipient Won't Bounce, and stuff it in text records
my preference is for defining A records for all of your incoming addresses, and the added bonus is you can use SPF macros to reuse your format in your SPF records and avoid spoofage from nonexistent addys in your domains. Which DNS server do you use and does it hit a DB (pdns) or do you rewrite its files and have it reformat its internal DB when there are changes (tinydns) ? On Wed, 17 Nov 2004 15:17:54 -0600, Peter Eisch <[EMAIL PROTECTED]> wrote: > > Hey! Thank you! > > I've wanted to do such a thing, but never put the 2 + 2 together (I'm > already using DNS for my qpsmtpd config management for the plethora of > domains I filter email). It had never occurred to me to use DNS for valid > addresses and aliases before... > > peter > > > > > On 11/17/04 2:39 PM, "David Nicol" <[EMAIL PROTECTED]> wrote: > > > On Wed, 17 Nov 2004 04:23:57 -0500, John Peacock <[EMAIL PROTECTED]> wrote: > > > > > >> 2) use some out of band method to query the remote server for valid > >> mailboxes; I > >> wrote a small finger server which queries my central vpopmail MySQL > >> database > >> to > >> validate the mailboxes; this is a much lighter weight check (and you have > >> to > >> remember to check aliases and list addresses, too). > > > > > > <mode aspect="visionary" mood="frustrated"> > > > > DNS would work better for this since it has well-defined caching, unlike > > VRFY, > > but adding a local cache would also work well, and nobody wants to muck > > with custom DNS servers that much > > > > </mode> > > > > > > -- David L Nicol "Factions are likely, in the course of time, to become potent engines, by which cunning, ambitious, and unprincipled men will be enabled to subvert the power of the people, and to usurp for themselves the reins of government; destroying afterward the very engines which have lifted them to unjust domination." -- George Washington
