[Asrg] Final(?) draft of DNSwL draft
Jim Fenton
fenton at cisco.com
Mon Jul 30 15:17:50 EDT 2007
John Levine wrote:
>
>> You might also mention how many DNSBLs there are.
>>
>
> How could anyone tell? They pop up and disappear dailt.
>
The point wasn't a specific number, but rather that there are a lot of
them. But maybe this is an operational concern, out of scope for this
document.
>
>> Section 3 should mention the need for some sort of email authentication
>> in order for the domain name to be meaningful.
>>
>
> Actually, the most common use of domain name DNSBLs is for the names
> found in URLs in the bodies of spam, which doesn't need any
> authentication.
>
It isn't at all clear that section 3 is talking about URLs. On the
contrary, the example of fred at invalid.edu is clearly not a URL, and the
term "right hand side blacklist" doesn't sounds like a URL either. Side
note: the document will be dinged for using anything other than RFC
2606 hostnames in examples.
> Authentication only matters if you're whitelisting by sender, but I
> don't know of anyone using DNSWLs for that.
>
We hope this will change with the wider deployment of authentication.
-Jim
More information about the Asrg
mailing list