[ On Thursday, March 11, 2004 at 14:27:56 (+0100), Toralf Lund wrote: ]
> Subject: [Exim] helo_verify and EHLO containing *domain* name?
>
> (from the reject log.) The problem appears to be that the EHLO contains
> a domain name rather than a host. Shouldn't this be accepted?
No, absolutely not. The greeting command (HELO or EHLO) _MUST_ use the
fully qualified _canonical_ host domain name of the client and that
hostname must resolve in the DNS to an A record specifying the source
address of the client connection.
Any lesser part of the fully qualified hostname is useless and
meaningless. There might be a zillion hosts with that same sub-domain
and many of them might be toasters or lightbulbs.
If you're going to do any kind of HELO verification then _please_ do it
the one and only "right way" -- i.e. stick to the real rules and DO NOT
try to invent bogus and misleading rules of your own. You are not
helping yourself or your users and you are certainly not helping the
poor clueless soul who tried to get away with a bogus partial name.
--
Greg A. Woods
+1 416 218-0098 VE3TCP RoboHack <woods@???>
Planix, Inc. <woods@???> Secrets of the Weird <woods@???>