Add support for tldBlackList

Question

Add support for tldBlackList

Closed this issue 9 years ago · 5 comments

In the same way there is an option tldWhiteList, it would be nice to also have tldBlackList. A usecase for this is to forbid the use of user@localhost on production servers (which may have a valid MX record, so a dns check isn't enough), while still accepting any other user@tld that may be a valid public email address

hueniverse commented 9 years ago

All done!

Answer 1 · 2015-10-29T15:41:01.000Z

Sounds like a good idea to me. I can take a stab at this in a few hours. One comment, though - the localhost entry should be in the hosts file, and isemail sends an actual dns request (thus bypassing host caching and config), so you shouldn't be seeing this...

Answer 2 · 2015-10-30T14:35:19.000Z

Actually, even though localhost does appear in the hosts file, the name server on the concerned host (which is the one set in resolv.conf) also has a zone file for localhost that contains an A record, but also an MX record. So the dns check does hit it and returns a valid MX record for localhost.

Answer 3 · 2015-11-01T22:20:55.000Z

I'm actually waiting on outmoded/hapi-contrib#62 before moving forward on this.

Answer 4 · 2015-11-02T23:06:06.000Z

@vdust keep in mind that a@[127.0.0.1] is valid for SMTP, so it might make sense to set errorLevel to 7 (dnsWarn) to avoid such an address being treated as valid.