On Thu, Apr 26, 2001 at 11:41:43PM +0300, Stanislav Malyshev a.k.a Frodo wrote:
> YR>> It provides a better audit trail. It is trivial to setup PTR records, and
>
> Just how better? Why PTR (which can be easily faked) is better than
> IP, which determines uniquely the offending host?
>
> As for triviality, many things are trivial to do and yet it is not the
> reason to require people to do them.
>
> YR>> DNS admins should be clued enough to know that their configuration must be
> YR>> consistent. When all IP addresses have PTR records the admin can determine
> YR>> more quickly the possibly offending ISP. Yes, I know, I could query RIPE,
>
> That's bull. For a small pay I can talk my ISP into giving control of PTR
> to my hands. Then I can setup my DNS to resolve all my IPs into
> fsck.me.harder.com and now go and determine my ISP from that. If I was
> smart enough to register harder.com on myself, you will never know who I
> am from DNS records. On the contrary, IP blocks are assigned to ISPs and
> by IP you _can_ determine my ISP very fast and efficiently.
>
> YR>> but registrant information may not always lead to the desired person.
>
> It will at least _always_ lead to my ISP, and at ISP, if it's cooperative,
> you will find out who has bought the IP. If ISP is incooperative, reverse
> DNS won't help you a bit anyway. They could just make reverse DNS to be
> copy of the IP (most dialup providers do that, so you get
> 1.2.3.4.provider.net as reverse for 1.2.3.4) and you are back to square
> one.
>
I believe you're missing a crucial point. I believe that wu-ftpd does not only
verify that a certain IP address has a PTR record, but it also ensures
that the PTR's respective A record is identical to the original IP address.
The previous statement obviates the comments mentioned above.
In the future, please maintain a minimal degree of politeness by refraining from
writing "That's bull."
Best regards, Yotam Rubin
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
