[Freeipa-devel] [PATCH] 057 Validate MX records
Adam Tkac
atkac at redhat.com
Wed Feb 16 12:33:09 UTC 2011
On Tue, Feb 15, 2011 at 12:09:11PM +0100, Jakub Hrozek wrote:
> https://fedorahosted.org/freeipa/ticket/967
>
> I'm wondering whether to extend the patch - if the mail server name does
> not end with a dot, BIND treats it as relative to the zone.
>
> So if you do:
> ipa dnsrecord-add example.com @ --mx-rec="10 mail.example.com"
>
> dig would then return mail.example.com.example.com
>
> The correct way of adding it is (note the trailing dot):
> ipa dnsrecord-add example.com @ --mx-rec="10 mail.example.com."
>
> This is in line with how nsupdate works, so should we just document it?
> A smarter way might be to check if the hostname ends with the zone name
> and append a dot, but I'm not sure if that perhaps /too/ smart..
Hello,
I would rather not include this logic. DNS traditionally allows such
flexibility; admins must modify zones (in text form or in LDAP)
carefully.
Regards, Adam
--
Adam Tkac, Red Hat, Inc.
More information about the Freeipa-devel
mailing list