spamassassin-dev December 2011 archive
Main Archive Page > Month Archives  > spamassassin-dev archives
spamassassin-dev: [Bug 6724] DNS Blacklistsreturning purposefull

[Bug 6724] DNS Blacklistsreturning purposefully wrong answers as part of Anti-Abuse / Free for Some Policies

From: <bugzilla-daemon_at_nospam>
Date: Tue Dec 13 2011 - 19:01:28 GMT
To: dev@spamassassin.apache.org

https://issues.apache.org/SpamAssassin/show_bug.cgi?id=6724

--- Comment #14 from Darxus <Darxus@ChaosReigns.com> 2011-12-13 19:01:28 UTC ---
Steve Freegard pointed out on IRC this additional bit of relevant BCP draft:

http://tools.ietf.org/html/draft-irtf-asrg-bcp-blacklists-10#section-3.4

   Note: In Section 3.4 it is noted that some DNSBLs have shut down in
   such a way to list all of the Internet. Further, in Section 3.5,
   DNSBL operators MUST NOT list 127.0.0.1. Therefore, a positive
   listing for 127.0.0.1 SHOULD indicate that the DNSBL has started
   listing the world and is non-functional. Similarly, a domain-based
   DNSBL SHOULD NOT ever list the reserved domain INVALID, and a
   positive listing for INVALID SHOULD indicate that the DNSBL is non-
   functional.

He also pointed out that it's only a draft.

There's also: "If this indicator is missing (query of 127.0.0.2 returns
NXDOMAIN), the DNSBL should be considered non-functional."

-- Configure bugmail: https://issues.apache.org/SpamAssassin/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are the assignee for the bug.