qname-minimization-and-privacy breaks dnsbl in postfix

classic Classic list List threaded Threaded
3 messages Options
Reply | Threaded
Open this post in threaded view
|

qname-minimization-and-privacy breaks dnsbl in postfix

Benny Pedersen-2

can other confirm it ?

_ is not an ip
Reply | Threaded
Open this post in threaded view
|

Re: qname-minimization-and-privacy breaks dnsbl in postfix

Benny Pedersen-2
Benny Pedersen skrev den 2019-11-07 05:45:
> can other confirm it ?
>
> _ is not an ip

forgot its on https://www.isc.org/blogs/qname-minimization-and-privacy/
Reply | Threaded
Open this post in threaded view
|

Re: qname-minimization-and-privacy breaks dnsbl in postfix

Viktor Dukhovni
In reply to this post by Benny Pedersen-2
> On Nov 6, 2019, at 11:45 PM, Benny Pedersen <[hidden email]> wrote:
>
> can other confirm it ?
>
> _ is not an ip

This could well happen, since RBL DNS servers are custom software
that does not necessarily handle empty-non-terminals.

There are more reasons to avoid qname-minimization on MTAs, I don't
remember the other issues just at the moment, but basically, while
it may be appropriate for browsers and laptops, it is presently a
poor fit for MTAs.  Don't enable this on your MTA's resolver.

--
        Viktor.