https://bz.apache.org/SpamAssassin/show_bug.cgi?id=8374
--- Comment #4 from László Károlyi <[email protected]> --- (In reply to AXB from comment #3) > SH_BODYURI_REVERSE_SBL is not a stock rule provided by SpamAssassin. Contact > whoever provided the rule. SH_BODYURI_REVERSE_SBL is provided by Spamhaus, but the NS IP lookup is done by spamassassin, as far as I could reckon: Mar 12 00:58:52.202 [18679] dbg: uridnsbl: got(4) NS for egis.hu: ns.webenlet.co.uk. Mar 12 00:58:52.202 [18679] dbg: async: launching A/ns.webenlet.co.uk, rules: SH_BODYURI_REVERSE_XBL, SH_BODYURI_REVERSE_DROP, SH_BO Mar 12 00:58:52.202 [18679] dbg: dns: providing a callback for id: 26141/IN/A/ns.webenlet.co.uk Mar 12 00:58:52.202 [18679] dbg: async: starting: SH_BODYURI_REVERSE_XBL, SH_BODYURI_REVERSE_DROP, SH_BODYURI_REVERSE_SBL, URIBL_CSS_A, URIBL_SBL_A, SH_BODYURI_REVERSE_CSS, URIBL, A/ns.webenlet.co.uk (timeout 15.0s, min 3.0s) Mar 12 00:58:52.234 [18679] dbg: async: calling callback on key A/ns.webenlet.co.uk, rules: SH_BODYURI_REVERSE_XBL, SH_BODYURI_REVERSE_DROP, SH_BODYURI_REVERSE_SBL, URIBL_CSS_A, URIBL_SBL_A, SH_BODYURI_REVERSE_CSS Mar 12 00:58:52.234 [18679] dbg: uridnsbl: complete_a_lookup A/ns.webenlet.co.uk SH_BODYURI_REVERSE_XBL,SH_BODYURI_REVERSE_DROP,SH_BODYURI_REVERSE_SBL,URIBL_CSS_A,URIBL_SBL_A,SH_BODYURI_REVERSE_CSS Mar 12 00:58:52.234 [18679] dbg: uridnsbl: complete_a_lookup got(1) A for ns.webenlet.co.uk: 193.226.76.66 Mar 12 00:58:52.297 [18679] dbg: async: completed in 0.031 s: URIBL, A/ns.webenlet.co.uk, rules: SH_BODYURI_REVERSE_DROP, SH_BODYURI_REVERSE_XBL, SH_BODYURI_REVERSE_SBL, URIBL_CSS_A, URIBL_SBL_A, SH_BODYURI_REVERSE_CSS So I still think this is the area of spamassassin. The rule does what it is told to, identify IPs that were involved in dubious activity. Blacklisting an entire company's emails just because one of their nameserver providers were marked as spammers, I don't think is a good idea. -- You are receiving this mail because: You are the assignee for the bug.
