Rod McChesney wrote:
> Bear in mind that whois often returns false negatives, because it's a
> huge security breach to allow random outsiders to skim your list of
> email accounts. For instance, I believe most corporate email systems
> refuse whois requests. You should probably try whois out on a sample
> of your actual user base to see how many could have been validated
> this way, and whether it's worth doing.
>
> Rod McChesney, Korobra
>
The better way to validate users's EMAIL addresses would be to use the verify
(VRFY) command already present in the SMTP protocol used to transport Internet
email. The protocol is pretty simple, and is outlined in RFC 821. It's probably
a 50-liner to do the remote validation using sockets, given an email address as
an argument.
Craig McClanahan
___________________________________________________________________________
To unsubscribe, send email to [EMAIL PROTECTED] and include in the body
of the message "signoff SERVLET-INTEREST".
Archives: http://archives.java.sun.com/archives/servlet-interest.html
Resources: http://java.sun.com/products/servlet/external-resources.html
LISTSERV Help: http://www.lsoft.com/manuals/user/user.html
