Andrewza

http://www.merit.edu/mail.archives/nanog/msg13603.html

Lovely...

HHxx

How lovely. My mailservers are really gonna love this

shunty

andrew, yhm

shunty

JackClark

Am I off track or does Internet Explorer do this already?

fast bloke

You are as always correct Jack. Does't work very well though

Andrewza

No, instead of returning NXDOMAIN for www.thisdomaindoesntwork.com, which is the correct thing to do, it returns A record 64.94.110.11 which means IE thinks it exists, connects to that IP and gets redirected to that search engine, IE's can be turned off, this cannot.

Also Hmm, Scoobynet's filtered that lovely URL that does cross site scripting on their search engine (relatively harmless, but funny)

It also means technically user@thisdomaindoesntwork.com is a valid email address, how many mail servers check the domain exists before accepting mail from an address. Score one for spammers.

And even with a valid domain that you don't want mail back to:
spammer.com IN MX mail.thisdomaindoesntwork.com
Score two for spammers.


[Edited by Andrewza - 9/16/2003 2:15:02 PM]

JackClark

Oh good. I thought they were going to target people like me who use typo's in their URL's. I have www.californear.com and get quite a few accidental visitors.

JackClark

Thanks Andrew, makes sense.

carl

A side effect is that if you mistype a URL, IE will think it's valid and store it in the autocomplete history. Great.

BTW I'm not sure it will affect spam that much. AFAIK most mailservers, if they do anything, do a RDNS lookup on the IP addx and make sure it matches the sender's domain in the SMTP envelope. Got caught out by this when doing direct MX via NTL broadband.