Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

False positives #84

Closed
szepeviktor opened this issue Mar 10, 2017 · 21 comments
Closed

False positives #84

szepeviktor opened this issue Mar 10, 2017 · 21 comments

Comments

@szepeviktor
Copy link
Contributor

szepeviktor commented Mar 10, 2017
edited

< disposable_email_blacklist.conf xargs -n 1 host -t MX reveals that

  • there are domain with such MX-s as aspmx.l.google.com. (http://www.drevo.si/)
  • or parked domains (NS is ns1.dnparking.com.)
  • or have a new registrant (http://www.emil.com/)
  • or expired
  • or having no Mx at all

Please advise.
@szepeviktor
Copy link
Contributor Author

szepeviktor commented Mar 10, 2017
edited

One solution would be to use Travis CI:

  1. Is it registered? - whois
  2. Does it have an NS? - root servers
  3. Does it have an MX? - DNS
  4. Is the first A record on our parked domain list?
  5. Is any of the MX-s on our MX blacklist?
  6. Are all of the MX-s on our MX whitelist?

@martenson
Copy link
Member

These are great ideas. I am not that educated in domain system - with no MX record can the domain be used for mailing in any way?

@szepeviktor
Copy link
Contributor Author

with no MX record can the domain be used for mailing in any way?

Of course not.

@martenson
Copy link
Member

@szepeviktor So I guess good first step would be to move domains with no MX record out of the list. Something like discontinued_domains.conf.

@chafreaky
Copy link
Contributor

Mhmm, what about people who use this list to prune databases from disposable email addresses, both old and current? Most disposable email providers have a 45 days sunset policy and the domains are then dropped after that time. Should they not be listed anymore?

@martenson
Copy link
Member

@chafreaky That is a use case that would be covered by transferring the non-existent-MX domains to discontinued_domains.conf - would it not?

@szepeviktor
Copy link
Contributor Author

szepeviktor commented Mar 10, 2017
edited

This issue is more about some kind of quality control, keeping things up-to-date.

@martenson
Copy link
Member

@szepeviktor To be frank I think non-existent MX entry does not make (former) disposable domain trustworthy per se.

@chafreaky
Copy link
Contributor

chafreaky commented Mar 10, 2017 via email

@ereli
Copy link
Contributor

ereli commented May 1, 2017

Have a look at https://github.com/ereli/disposable-email-domains/tree/validate
you can run python ./validate_dns.py |awk -F" - " '{print $2 }'|sort|uniq -c
and find out how many domains are no longer actively used. I should probably retry on NoAnswer, but these are the basic numbers I've got:

1355  MX found
49  no resolver NS servers found
384  non existent domain
391 NoAnswer

@ScottyTM
Copy link

ScottyTM commented Jun 6, 2017

Domains without an MX can still receive mails. The MTA will try the A record to deliver mails to this domain.

@szepeviktor
Copy link
Contributor Author

The MTA will try the A record to deliver mails to this domain.

Could you link the reference of this?

@ScottyTM
Copy link

https://en.wikipedia.org/wiki/MX_record#History_of_fallback_to_address_record

@szepeviktor
Copy link
Contributor Author

Thank you.

In January 1986, RFC 973 and RFC 974 deprecated the MD and MF records, replaced them with MX, and defined the MX lookup with fallback to A.

I've ran through the two RFC-s and found no traces of the mentioned fallback.

@ScottyTM
Copy link

ScottyTM commented Jun 10, 2017
edited

The lookup first attempts to locate an MX record associated with the name. If a CNAME record is
found, the resulting name is processed as if it were the initial name. If a non-existent domain error is
returned, this situation MUST be reported as an error. If a temporary error is returned, the mess age
MUST be queued and retried later (see Section 4.5.4.1). If an empty list of MXs is returned, the
address is treated as if it was associated with an implicit MX RR, with a preference of 0, pointing to that
host. If MX records are present, but none of them are usable, or the implicit MX is unusable, this
situation MUST be reported as an error.

from https://tools.ietf.org/html/rfc5321#section-5

@szepeviktor
Copy link
Contributor Author

Thank you!

I think it is not implemented in modern MTA-s.

@ScottyTM
Copy link

ScottyTM commented Jun 10, 2017
edited

Sorry, but it seems you have no idea how mail works. It's been the standard for over 30 years. Every major MTA implements it as it is in the RFC as quoted above.

@martenson
Copy link
Member

Domains without an MX can still receive mails. The MTA will try the A record to deliver mails to this domain.

Thanks for the info @ScottyTM, this complicates things a bit further for this issue.

@ssjunior
Copy link

@ScottyTM is right. If there is no MX, the A will be used as fallback.

@marcelstoer
Copy link
Contributor

In a way this is a duplicate of #58.

@martenson martenson mentioned this issue Feb 5, 2018
Closed
@szepeviktor szepeviktor mentioned this issue May 25, 2018
Closed
@szepeviktor
Copy link
Contributor Author

Yes.

@martenson martenson mentioned this issue Feb 20, 2024
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
7 participants
@marcelstoer @ScottyTM @szepeviktor @ereli @martenson @chafreaky @ssjunior