[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: Input on identities

To: ietf-mxcomp@xxxxxxx
Subject: Re: Input on identities
From: "Alan DeKok" <aland@xxxxxx>
Date: Sat, 10 Apr 2004 16:04:31 -0400
In-reply-to: Your message of "Sat, 10 Apr 2004 14:58:33 EDT." <>
List-archive: <http://www.imc.org/ietf-mxcomp/mail-archive/>
List-id: <ietf-mxcomp.imc.org>
List-unsubscribe: <mailto:ietf-mxcomp-request@imc.org?body=unsubscribe>
Sender: owner-ietf-mxcomp@xxxxxxxxxxxx

millenix@xxxxxxxxx wrote:
> I interpreted that to mean that an EHLO cannot be rejected on the basis of
> the EHLO argument not resolving to the peer IP address.

  So the argument is a name in DNS (which allegedly resolves to an IP
address), but doesn't have to exist in DNS.  Weird.

> I think implicit in that text is ...

  This is where I get confused.  Anything which isn't explicit in a
standard is implementation defined.  MTA's are doing all sorts of
things with the argument to EHLO, but I'm not sure something which has
"implicit" or "implementation-defined" meaning will mean the same
thing to everyone.

> That's how I'm looking at it. There are flaws in RFC 2821 that prevent
> accountability and allow harmful forgery of various protocol fields. We're
> here to fix that.

  I agree.  But I haven't seen much discussion as to *what* those
flaws are, or *why* we're fixing them.  I'd like to have explicit
statements of the flaws, before we get in-depth into solutions.

  Alan DeKok.

Follow-Ups:
- Re: Input on identities
  - From: Greg Connor

References:
- Re: Input on identities
  - From: Philip Miller

Prev by Date: Re: Input on identities
Next by Date: Re: User experience
Previous by thread: Re: Input on identities
Next by thread: Re: Input on identities
Index(es):
- Date
- Thread