View Issue Details
| ID | Project | Category | View Status | Date Submitted | Last Update |
|---|---|---|---|---|---|
| 0000831 | Main CAcert Website | misc | public | 2010-08-06 19:00 | 2013-01-15 14:41 |
| Reporter | jplitza | Assigned To | wytze | ||
| Priority | urgent | Severity | major | Reproducibility | always |
| Status | closed | Resolution | fixed | ||
| Fixed in Version | 2010 Q4 | ||||
| Summary | 0000831: (Missing) IPv6 DNS entries make mailserver reject mails | ||||
| Description | Hi there, I'm trying to add a mail address to my account (@math.uni-bremen.de), but the mailserver (reachable via IPv6) rejects the test message with the following error code: 550 5.7.1 ... Access denied. Your PTR record is in conflict with your A record for [IPv6:2001:7b8:3:9c::245] - Please fix your DNS server and resend This is caused by the PTR record of 2001:7b8:3:9c::245 being www.cacert.org, but cacert.org not having any AAAA records. I think that's a bug, either in the DNS of cacert.org or in the mail daemon connecting from IPv6 addresses, as reverse checking of PTR records is a common technique for spam filtering. | ||||
| Tags | No tags attached. | ||||
| Reviewed by | |||||
| Test Instructions | |||||
|
|
This is handled in a support request (s20100826.164). It should be acted upon with hghest urgency as this prevents a growing number of users from usign CAcert. |
|
|
Problem fixed by using a new mailname "wwwmail.cacert.org" for mail sent by CAcert's webdb server, and ensuring that A and AAAA records for this name are present as well as reverse IP mapping records for the corresponding addresses pointing back to the same name. A user test has confirmed that this fixes the problem. |
|
|
Problem fixed by using a new mailname "wwwmail.cacert.org" for mail sent by CAcert's webdb server, and ensuring that A and AAAA records for this name are present as well as reverse IP mapping records for the corresponding addresses pointing back to the same name. A user test has confirmed that this fixes the problem. |
| Date Modified | Username | Field | Change |
|---|---|---|---|
| 2010-08-06 19:00 | jplitza | New Issue | |
| 2010-08-26 22:56 | Natureshadow | Note Added: 0001683 | |
| 2010-08-26 23:00 | Natureshadow | Priority | normal => urgent |
| 2010-08-26 23:00 | Natureshadow | Severity | minor => major |
| 2010-08-26 23:00 | Natureshadow | Summary | IPv6 DNS entries make mailserver reject mails => (Missing) IPv6 DNS entries make mailserver reject mails |
| 2010-10-15 13:27 | wytze | Note Added: 0001755 | |
| 2010-10-15 13:28 | wytze | Note Added: 0001756 | |
| 2010-10-15 13:28 | wytze | Status | new => closed |
| 2010-10-15 13:28 | wytze | Resolution | open => fixed |
| 2010-10-15 13:28 | wytze | Assigned To | => wytze |
| 2013-01-15 14:41 | Werner Dworak | Fixed in Version | => 2010 Q4 |
