On Thu, Sep 06, 2007 at 12:26:03AM -0400, Matt Kettler wrote: > > That's great if we use the zone machine for DNS, that doesn't really work > > for > > individuals running on our own machines... ;) > > Do you run a simple caching named on your machine?
No, I run a full multi domain named on my machine. But it does caching. :) > If so, it would be really easy to add a forwarding zone to forward all > queries for a particular domain to a the zone machine. Yes. Of course it's possible to forward the requests to the zone machine. But that's not really a solution. The ASF folks already have problems with us using so many resources, they're not going to be happy with <the_world> using the machine for DNS. From a sysadmin perspective, that's horrible. I also don't think all these places would let us allow open access to their zone data. So I'd expect us to limit the usage to only the local machine. > But I think --reuse should suffice. However, we should be on the lookout > for the fact that spamhaus is auto-detecting and auto-blacklisting sites > making lots of queries. That could dramatically change the scoring of > the rules. Perhaps we should talk to these services and figure out a way to make it all work? > Which also brings up a second issue. Should we disable Spamhaus by > default as we've done in the past for razor and DCC? They're no longer > "free for everyone", and actually even reasonably small networks can't > use them for free (100 user limit). Sounds reasonable to me. -- Randomly Selected Tagline: "Windows 98 -- Go for the bloat!" - Theo Van Dinter
pgphoUiIV2HbK.pgp
Description: PGP signature
