On Friday 13/03/2015 at 2:17 pm, David B Funk wrote:
On Fri, 13 Mar 2015, Axb wrote:
On 03/13/2015 07:54 PM, John Hardin wrote:
On Fri, 13 Mar 2015, David B Funk wrote:
Except that the rrpproxy.net people have figured out a way to
cirumvent this.
They now register spammer domains and don't list -any- NS records in
the zone.
Is *that* a useful spam sign?
Remember, SA is not an RFC compliance validation tool. If a few legit
admins do that, and lots of spammers do it, then it's useful for
detecting spam.
Even if it's very tempting, it's not safe to use.
(been there - got bitten)
Your 'been there - got bitten', is that a reference to the temptation
or the actual case of no NS records?
Not listing NS records goes against DNS best-practices, I'm not
even sure how that kind of zone hosting works.
IIRC, every zone must have two records miniumu: an SOA record and 1 NS
record.
If a policy can't find an NS record for @sender.domain, I would reject
with at least a 4xx.
Len
