nanog mailing list archives
Re: Verisign suggestion
From: David B Harris <david () eelf ddts net>
Date: Thu, 18 Sep 2003 11:42:26 -0400
On Thu, 18 Sep 2003 08:24:40 -0400 (EDT) Todd Vierling <tv () duh org> wrote:
: > ...and for heavens sake, stop accepting any kind of request at all on port
: > 25!! Just shut it down altogether. There is no reason for you to accept
: > any connection of any kind on port 25!
: If they don't accept anything on port 25, either by sending all packets
: to /dev/null or by responding with SYN+RST ("Connection refused"), MTAs
: everywhere will consider this a "temporary error."
Then the wildcard should have included a MX that points to nowhere, rather
than implementing a fake MTA that allows the MAIL FROM and RCPT TO addresses
to be transmitted. The record "IN MX 0 ." is commonly used for this
purpose.
Yeah, thanks for pointing this out. T'was an accidental omission in my mail.
Attachment:
_bin
Description:
Current thread:
- Verisign suggestion Gerald (Sep 17)
- Re: Verisign suggestion David B Harris (Sep 17)
- Re: Verisign suggestion Valdis . Kletnieks (Sep 17)
- Re: Verisign suggestion Todd Vierling (Sep 18)
- Re: Verisign suggestion Niels Bakker (Sep 18)
- Re: Verisign suggestion David B Harris (Sep 18)
- Re: Verisign suggestion Leo Bicknell (Sep 18)
- Re: Verisign suggestion David B Harris (Sep 17)