Proper Way to Configure a Domain which never sends emails

Marco Davids Marco.Davids at sidn.nl
Tue Aug 20 07:28:41 UTC 2019 

A TXT _dmarc.domain.tld "v=DMARC1; p=reject" might also be useful.

--
Marco

On 19/08/2019 23:31, Kevin Darcy wrote:
> [ Classification Level: PUBLIC ]
> 
> MXes are for *receiving* mail of course. The request is about *sending*
> mail.
> 
> Setting the SPF record to "-all" is probably about the best you can do,
> since AFAIK there is no universally-recognized way to signal "domain X
> never sends mail".
> 
> Ironically, in order to prevent anyone from accepting mail purportedly
> from your domain, you might want to make yourself look as much as
> possible like SPAM or malware.
> 
> Perhaps you could volunteer your domain to be added to one or more of
> the public SMTP blacklists? :-)
> 
>                                                                        
>                                                  - Kevin
> 
> On Mon, Aug 19, 2019 at 10:34 AM Barry Margolin <barmar at alum.mit.edu
> <mailto:barmar at alum.mit.edu>> wrote:
> 
>     In article <mailman.930.1566219505.711.bind-users at lists.isc.org
>     <mailto:mailman.930.1566219505.711.bind-users at lists.isc.org>>,
>      Ignacio García <yo at ignasi.com <mailto:yo at ignasi.com>> wrote:
> 
>     > Hi there.
>     >
>     > Thanks for your support. First message to the list, sorry if already
>     > posted a similar question, but I haven't found mention anywhere.
>     >
>     > I have to set up dns records for a domain just for a web site, for
>     which
>     > we will NEVER send emails (though we might receive some from old
>     > customers), so I would like to announce somehow that emails sent from
>     > this domain should always be disregarded. I was thinking of
>     setting just
>     > A and AAAA records for @ and www, NS records, MA records (for
>     receiving)
>     > and SPF with a record just consisting of v=spf1 -all  , not
>     declaring an
>     > A and MX records at all. I'm not sure at all this is a proper way of
>     > declaring this. In fact, what I would like is to EXPLICITELY mention
>     > somehow that we will never send emails from that domain. Could
>     anybody
>     > help me with this?
> 
>     A common practice is to point the MX record to ".".
> 
>     -- 
>     Barry Margolin
>     Arlington, MA

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 833 bytes
Desc: OpenPGP digital signature
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20190820/138d4d9f/attachment-0001.bin>

More information about the bind-users mailing list