Re: [Asrg] What are the IPs that sends mail for a domain?

Bill Cole <> Wed, 17 June 2009 03:27 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id AB1533A6D6C for <>; Tue, 16 Jun 2009 20:27:20 -0700 (PDT)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.932
X-Spam-Status: No, score=-2.932 tagged_above=-999 required=5 tests=[AWL=-0.333, BAYES_00=-2.599]
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id i1QYTYfIyXxL for <>; Tue, 16 Jun 2009 20:27:17 -0700 (PDT)
Received: from ( []) by (Postfix) with ESMTP id 830583A6D62 for <>; Tue, 16 Jun 2009 20:27:17 -0700 (PDT)
Received: from ( []) (using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits)) (No client certificate requested) by (Postfix) with ESMTP id 7AAD98D551C for <>; Tue, 16 Jun 2009 23:27:28 -0400 (EDT)
Message-ID: <>
Date: Tue, 16 Jun 2009 23:27:27 -0400
From: Bill Cole <>
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X 10.5; en-US; rv:1.9.1b3pre) Gecko/20090408 Eudora/3.0b2
MIME-Version: 1.0
To: Anti-Spam Research Group - IRTF <>
References: <> <> <>
In-Reply-To: <>
Content-Type: text/plain; charset=UTF-8; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Re: [Asrg] What are the IPs that sends mail for a domain?
X-Mailman-Version: 2.1.9
Precedence: list
List-Id: Anti-Spam Research Group - IRTF <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 17 Jun 2009 03:27:21 -0000

Lyndon Nerenberg wrote, On 6/16/09 9:55 PM:
> On Tue, 2009-06-16 at 17:24 -0700, Douglas Otis wrote:
>> IMHO, all outbound MTAs should be required to return CVS records for
>> their EHLO name and offer MX records for their inbound.
> Doug, are you sure that's what you meant to say? The sentence is a bit
> ambiguous. Are you really saying any host that sends mail (is an SMTP
> client) MUST also host an listed SMTP server?

I can't testify to what he meant, but I think what he is actually saying is 
that if you have a machine that says "EHLO" then there should be 
both a MX record for and a SRV record for 
(i.e. a CSV/CSA record).

That doesn't mean requiring inbound SMTP on every outbound, it means 
requiring an affirmation in DNS that a name can be used in EHLO by a 
particular IP address and a way to get mail to the responsible party for the 
machine(s) using that name in EHLO. This is an admirable goal. A weaker goal 
would be to get people running non-spamming mail servers to follow the 
existing accepted standard of using a valid resolvable FQDN in EHLO.