@lbutlr wrote:
> Bob Proulx wrote:
> > Since 199.5.50.180 does not appear in the allowance for the SPF
> > records that I can see
>
> dig -x 199.5.50.180 +short
> br2.vw.com.
>
> VW does own Audi, so... mystery deepens?
That's simply the reverse DNS PTR record. Anyone can set their own
PTR records to be anything they wish them to be. That's why for the
full circle test the br2.vw.com would need to resolve back to
199.5.50.180 in order to have any trust in it at all. Because that
would show that vw.com lists 199.5.50.180. The PTR record is only
just so ever slightly more trustworthy than the HELO hostname. Ever
so slightly since it means the hosting provider supported the
setting. Most VPS providers do for example.
However I did look one step deeper and queried the whois records for
that IP address allocation. It does have an address allocation to
Volkswagen Group of America, Inc. and therefore may actually be part
of them.
NetRange: 199.5.32.0 - 199.5.63.255
CIDR: 199.5.32.0/19
NetName: NETBLK-NET-VWNA
NetHandle: NET-199-5-32-0-1
Parent: NET199 (NET-199-0-0-0-0)
NetType: Direct Assignment
OriginAS:
Organization: Volkswagen Group of America, Inc. (VOLKSW-1)
Which would swing my opinion over to the deeply misconfigured side of
things.
Bob
