[prev in list] [next in list] [prev in thread] [next in thread] 

List:       spamassassin-users
Subject:    Re: potential new SA feature: Direct DNS Querying Per DNSBL Zone
From:       RW <rwmaillists () googlemail ! com>
Date:       2017-11-16 14:52:08
Message-ID: 20171116145208.1c4b0ae6 () gumby ! homeunix ! com
[Download RAW message or body]

On Wed, 15 Nov 2017 12:03:58 -0500
Rob McEwen wrote:


> Why is this "Direct DNS Querying Per DNSBL Zone" feature
> needed/important?

In most of these cases you'd be better-off simply setting "dns_server"
in the SA configuration. This eliminates the effect of changes to
resolv.conf, and the setting takes a port value, so it needn't even
point to localhost:53.

The change does provide a benefit where an admin can't even start a
daemon on a non-standard port, but I think its general usefulness has
been greatly inflated.

What is interesting about this is if it were implemented in full, with
DNS caching, it wouldn't be much more difficult to have SA do an NS
look-up to find authoritative servers for each list. That would allow
network tests to work correctly by default.









[prev in list] [next in list] [prev in thread] [next in thread]