REVERSE DNS Practices.

Luke S Crawford lsc at prgmr.com
Sat Mar 28 02:12:22 CDT 2009


bmanning at vacation.karoshi.com writes:
>  or - the more modern approach is to let the node (w/ proper authorization)
>  do a secure dynamic update of the revserse map - so the forward and reverse
>  delegations match. ... a -VERY- useful technique.

I have a question.  Is this an abuse problem?  some ISPs require their domain
to be in the rdns in an effort to herd abuse reports to the correct org.
Is this generally considered useless?  Is it generally considered OK to
hand relatively untrusted users the keys to their own rdns?  

(I'm forcing my own customers to have a rdns of something.xen.prgmr.com
for several months, Much to the chagrin of many presumably innocent and 
legitimate customers. )




More information about the NANOG mailing list