On Sun, Jul 09, 2000 at 08:24:23PM -0400, Greg A. Woods wrote:
Yes, but you're so paranoid that you don't accept email from boxes that HELO themselves as a CNAME.
actually that's for a different reason -- and no I don't believe in allowing for contradictions in the RFCs! ;-)
Unfortunately, it allows for contradictions in this discussion. At least one pro-ORBS person has stated that individuals should make direct SMTP connections instead of using their provider's server, and they could thus avoid being subject to ORBS testing of their provider. Oh, but sorry; if I do that, I can't send Greg A. Woods email, because his system doesn't recognize the value in my system having the name "oa.eiv.com" all the time, instead of me hacking together sed scripts to change my sendmail config to read something like "user1432.fl.sprint-hsd.net" every time I get a new dynamic IP. My SMTP server doesn't relay, PLUS it's firewalled to block inbound connections entirely except for where I want them to come from. But I still can't email various ORBS people because they're a bunch of paranoids. If I switch to using my provider's SMTP server, now I have a security issue because it's going through a server I don't control and which could conceivably screw up and get itself ORBS-listed at any moment, completely outside my control. So, one way I risk not being able to email people, and the other way I risk the same thing. Screw it; I will run my systems the way I see fit. ORBS can go wall themselves off from the Internet as much as they like. Hell, be like Fidonet if you want and try to pretend the Internet doesn't exist or is just a fad. Maybe I'll open my server up to relay; since it jumps around, you won't be able to lock it off without cutting off the entirety of Sprint's DSL lines.