[RFCI-Discuss] wirralnews.com

Alex van den Bogaerdt alex at ergens.op.het.net
Thu Sep 6 21:56:15 EDT 2007 

On Thu, Sep 06, 2007 at 03:05:10PM -0400, Derek J. Balling wrote:

> But that's not how the zone is defined. That might be how a bogusns  
> zone might be defined, but what you're describing would make a "dns  
> misconfiguration" (e.g., forgetting to put NS records for your own  
> zone inside itself) into a "bogusmx" case, even if the MX is otherwise  
> valid (e.g., ". IN MX 0 mail.mydomain.com."), which is not really in  
> alignment with the goals of the zone.

I don't understand.

It was my understanding that detecting the bogus MX record was
no problem (and thus ". IN MX 0 mail.mydomain.com." would not
trigger anyway) but detecting a bogus MX record in a bogus
zone was the problem.  That's why I did not suggest actually
checking the MX record (again).


You asked: "How can I tell WHO to query?". Well, dns delegation
is defined but apparently not accepted by the nameservers which
should have been authoritative.

You know how it works, but I copy relevant parts in anyway:

Asking a root server:
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 13, ADDITIONAL: 14

;; QUESTION SECTION:
;wirralnews.com.			IN	NS

;; AUTHORITY SECTION:
com.			172800	IN	NS	K.GTLD-SERVERS.NET.
[snip]

Asking a gtld server:

;; flags: qr rd; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;wirralnews.com.			IN	NS

;; ANSWER SECTION:
wirralnews.com.		172800	IN	NS	dpns1.dnsnameserver.org.
[snip three more]


Still no authoritative answer, but you know where to look.

Asking dpns1:

;; Got answer:
;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

Authoritative answer: there are no name servers for this zone.

So far you've started the quest because of a bogus MX record, and
you've found out the zone has no NS either.  Nevertheless you ask
the other name servers, and you look for SOA records.


Technically speaking, "*.mx.*." may not be a valid hostname. But
it is a hostname which has no A record associated with it.

I really don't see why you would not list wirralnews.com. as it
clearly matches http://www.rfc-ignorant.org/policy-bogusmx.php



Besides: how likely is it to forget adding NS records, SOA records
*and* having a weird MX record like "@ 0 *.mx.*." and still having
done all this by accident or as a result of ignorance ?  Wouldn't
some legitimate but stupid user soon find out he does not receive
replies and have it fixed?


another 2ct.
Alex

More information about the RFCI-Discuss mailing list