>> Most PTR checks look up the name to be sure there's a matching forward >> (AAAA in this case) record, and ignore them if there isn't. > >I see. Too bad. Is it any more feasible to adjust expectations for v6 in >this respect than it was when we were talking about not providing PTR for >v6 in the first place?
Considering the security issues involved, I sure hope not. >For whatever it's worth I've been running with a wildcard PTR for my >hurricane-tunnel v6 network at home for more than four years. It's only a >dozen or so addresses, but I haven't hit any obvious problems. I see a lot of v4 PTRs that don't forward resolve when doing header analysis for spam reports. The majority just seem sloppy, but a fair number are malicious and try to impersonate someone. R's, John _______________________________________________ DNSOP mailing list DNSOP@ietf.org https://www.ietf.org/mailman/listinfo/dnsop