Maintained by: NLnet Labs

[Unbound-users] Question about qtype=any

sthaug at nethelp.no
Tue Jul 19 00:55:30 CEST 2011


> >Firstly, the current SMTP
> > specification does not require domains to be canonicalized. Secondly,
> > qmail should use an MX query not an ANY query, since it is looking up a
> > mail domain not performing DNS diagnostics. Thirdly, it uses a 512 byte
> > buffer which is too small, and it has no provision for dealing with
> > truncated replies.
> 
>  A modern qmail like Spamcontrol for example is patched to be compliant
>  with the new RFCs and larger replies.
> 
> So hopefully there aren't any servers still going and doing this any
> more then.

If you believe this I have a nice piece of Florida swamp to sell you.

There are *lots* of old, unmaintained/unpatched qmail systems out there,
doing ANY queries with small query buffers etc.

> An old qmail might still be secure but incompliant with some
> modern systems but an old sendmail would be a zombie on acid.

An old unpatched qmail might be secure - but it would also be incapable
of delivering some email.

Steinar Haug, Nethelp consulting, sthaug at nethelp.no