14 May 16:59
Re: Mx lookup
From: Noel Jones <njones <at> megan.vbhcs.org>
Subject: Re: Mx lookup
Newsgroups: gmane.mail.postfix.user
Date: 2008-05-14 14:59:39 GMT
Subject: Re: Mx lookup
Newsgroups: gmane.mail.postfix.user
Date: 2008-05-14 14:59:39 GMT
Mark Blackman wrote: >> >> Just log into your OpenDNS account and disable 'Typo Corrections' and >> you're good to go... > > Thanks, I certainly didn't realize that option existed, but > how does that deal with malicious conflicting IP entries? > > i.e. > user A declares they do queries from IP A and turn off typo correction > user B declares they do queries from IP A *as well* and turn *on* typo > correction. > Only one user can register for a given IP. As long as you're the first to register your IP there isn't a problem. If one of your users already registered your NAT IP, prove to OpenDNS you're the admin and they'll bump the squatter off. Not exactly perfect, but usable. I've had very good results using OpenDNS as a bind forwarder on sites with high-latency connections. Works great after typo correction is turned off. And an alternative is to use check_sender_mx_access and reject anything that returns OpenDNS' search IP. -- -- Noel Jones
RSS Feed