[Mimedefang] Unique identifier
Jon Rowlan
jon.rowlan at sads.com
Tue Feb 24 02:33:00 EST 2009
Many thanks all, I will get coding..
jON
-----Original Message-----
From: mimedefang-bounces at lists.roaringpenguin.com
[mailto:mimedefang-bounces at lists.roaringpenguin.com] On Behalf Of
xWBrown at e1b.org
Sent: 20 February 2009 19:55
To: mimedefang at lists.roaringpenguin.com
Subject: Re: [Mimedefang] Unique identifier
Kevin wrote on 02/20/2009 01:13:21 PM:
> I've always used $QueueID as unique BUT I'm sure it has some
possibility
of
> not being random especially if you use more than one server.
QueueID plus hostname will take care of uniqueness as suggested by RFC
822.
Which suggests an interesting idea to validate messages:
A DNS style verification of messages sent. For example, the Message-ID
of
the message I am replying to shows:
Message-ID: <C71C5F34D3FD4A82861FD18EEF700959 at peregrinehw.com>
So, if I substitute a period for the "@" do a DNS query for
C71C5F34D3FD4A82861FD18EEF700959.peregrinehw.com, their nameserver could
return a coded response that message did indeed originate from that
server.
The Message-ID values would need to be kept for some minimum time period
before being flushed, perhaps seven to ten days.
Potential problems I can see:
1. Load on DNS servers, which would need to delegate the query to the
actual mail server named in the message-id.
2. Message-id would need to be immediately available from MTA to DNS
type
server for verification. This could be mitigated if the mail server
based
the all or some of LHS of message-id on time, and queried message-ID
fell
in the past few seconds, before actual used IDs are updated to DNS
server.
3. Obviously not effective until widely deployed.
On the positive side:
1. Unlike Domain Keys and other crypto-signature systems, requires no
central authority.
_______________________________________________
NOTE: If there is a disclaimer or other legal boilerplate in the above
message, it is NULL AND VOID. You may ignore it.
Visit http://www.mimedefang.org and http://www.roaringpenguin.com
MIMEDefang mailing list MIMEDefang at lists.roaringpenguin.com
http://lists.roaringpenguin.com/mailman/listinfo/mimedefang
More information about the MIMEDefang
mailing list