Can an RPZ record be used for a non-existed domain?
Carl Byington
carl at byington.org
Thu Mar 24 16:02:14 UTC 2022
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512
On Thu, 2022-03-24 at 16:48 +0100, Benny Pedersen wrote:
> > Is it possible to add records for non-existing domains to the RPZ?
I think so.
> what is the point ?
Presumably to create those domains locally. Of course the rest of the
world won't see them.
For example, I have some clients using a sendmail milter, which for some
users requires matching forward/reverse dns. And there are some senders
that just cannot seem to get that right. So we add
1.0.0.127.in-addr.arpa PTR outbound.example.com.
outbound.example.com A 127.0.0.1
to force matching forward/reverse dns. But that creates the name
outbound.example.com locally, where that name does not exist in the
global name space.
-----BEGIN PGP SIGNATURE-----
iHMEAREKADMWIQSuFMepaSkjWnTxQ5QvqPuaKVMWwQUCYjyVrRUcY2FybEBmaXZl
LXRlbi1zZy5jb20ACgkQL6j7milTFsEu8ACfWgB0gXmrfZrsLrZ2+3b/K+PYgDkA
n18rhjSH1nRnxXepbbttXLr03FZS
=mTOI
-----END PGP SIGNATURE-----
More information about the bind-users
mailing list