nanog mailing list archives
Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking
From: Mark Andrews <marka () isc org>
Date: Thu, 28 Feb 2019 14:22:19 +1100
On 28 Feb 2019, at 1:13 pm, John R. Levine <johnl () iecc com> wrote: FYI:SMTP transitioned from A to MX.No, it didn't. A surprising number of real mail hosts only publish an A, and I lost the battle to say that MX shouldn't fall back to AAAA. It does.
You have missed the point. No one publishes A’s (or AAAA’s) because they think MX is not supported by other MTAs. If one wanted to stop all fallback to A (and AAAA) then there needed to be a RFC that said so and set a date for fallback to no longer be performed.
SPF could have been the same except people were impatient and had unrealistic expectations of how long it would take.Perhaps it's a generational thing. I'm not very interested in transitions that won't happen until after I'm dead.
It required libraries to be written and for MTAs to use those new libraries. That had started to happen. We had name servers at the end that were synthesising SPF records from TXT records. One just had to wait for the OS refreshes to occur which would got the new MTA’s deployed. That would have mostly been done by now and I’m happy that you are not dead. Unfortunately I can’t prove that this would have been the course of events because it got aborted.
R's, John
-- Mark Andrews, ISC 1 Seymour St., Dundas Valley, NSW 2117, Australia PHONE: +61 2 9871 4742 INTERNET: marka () isc org
Current thread:
- Re: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking, (continued)
- Re: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mike via NANOG (Feb 27)
- Re: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Töma Gavrichenkov (Feb 27)
- RE: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Eric Tykwinski (Feb 27)
- Re: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Måns Nilsson (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking John Levine (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Måns Nilsson (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mark Andrews (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking John R. Levine (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mark Andrews (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking John R. Levine (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mark Andrews (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking bzs (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Seth Mattinen (Feb 27)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mike Meredith (Feb 28)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Måns Nilsson (Feb 28)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Bjørn Mork (Feb 28)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Mike Meredith (Feb 28)
- Re: a detour DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Måns Nilsson (Feb 28)
- Re: DANE, was A Deep Dive on the Recent Widespread DNS Hijacking Töma Gavrichenkov (Feb 27)
- RE: A Deep Dive on the Recent Widespread DNS Hijacking Jacques Latour (Feb 26)
- Re: A Deep Dive on the Recent Widespread DNS Hijacking Bill Woodcock (Feb 26)