Cody Millard via Postfix-users:
> |Hello list.|
>
> |
> |
>
> |I included Spamhaus XBL in client restrictions for my server. An error
> is supplied to the individual/bot that is trying to connect that looks
> like the follow:
>
> |
>
> |Transcript of session follows. Out:
554 5.7.1 Service unavailable;
> Client host [57.152.56.248] blocked using <DQS_KEY>.xbl.dq.spamhaus.net;
> Listed by XBL, see https://check.spamhaus.org/query/ip/57.152.56.248 In:
> ??? Out: 500 5.5.2 Error: bad UTF-8 syntax In: Out: 500 5.5.2 Error: bad
> UTF-8 syntax In: ? Out: 221 2.7.0 Error: I can break rules, too.
> Goodbye. For other details, see the local mail logfile *You can see my
> dqs key in the err*|*or send to the client. Is this a problem? If so, how
> could I remove the
> DQS key from the response? *
The rbl_reply_maps are searched with the domain specified with
reject_rbl_client.
That includes the optional "=address" portion, added in Postfix
2.8, but that was not added to the much older rbl_reply_maps
documentation.
There is an rbl_reply_maps example (a hash map) at
https://docs.spamhaus.com/datasets/docs/source/40-real-world-usage/MTAs/020-Postfix.html
your_DQS_key.zen.dq.spamhaus.net=127.0.0.[2..11]
554 $rbl_class $rbl_what blocked using ZEN - see ... for details
...
your_DQS_key.zen.dq.spamhaus.net
554 $rbl_class $rbl_what blocked using ZEN - see ... for details
...
This behavior is different from postscreen; that program searches
the reply table with the service domain (your_DQS_key.zen.dq.spamhaus.net),
i.e. without the optional "=address" or "*weight".
Wietse
_______________________________________________
Postfix-users mailing list -- postfix-users@postfix.org
To unsubscribe send an email to postfix-users-le...@postfix.org
