[martinflack]

They'd need every permutation of 2, 3 letters of m, i, l; and while we're at it, add the keys close-by on a qwerty layout.

It seems like a better approach would be to harden all email software in usage to ban almost-but-not-quite .mil at the end of email addresses, looking for the above permutations client-side before anything is transmitted.

[DropInIn]

Maybe have thier email system do a check for a tld matching that and send a verification email before sending, just to make sure they aren't blocking legit email delivery?

Because I can see some serious shortcomings in your proposal right off the bat...

[martinflack]

It's not just a question of whether it makes a legit TLD; it's also whether military personnel should have any reason to send email there from a given system.

[globalise83]

Well, only the permutations which are also a valid domain, that narrows the field a lot and is also an easily obtainable list.

[martinflack]

I'd future-proof it against coming TLD's up-front.