On 04/27/2015 10:57 PM, Alex Regan wrote: >> >> check_client_access uses the verified name, which is more conservative. >> I wasn't convinced this was a good idea, so I played it safe. > > So check_client_access is performing an additional DNS query on the > hostname to check if it matches the IP? >
Right. >>> Doesn't this all serve the same purpose as RDNS_DYNAMIC already included >>> with spamassassin? >> >> It does, but RDNS_DYNAMIC matches fewer patterns. > > Are you concerned about duplicate points for effectively the same rule? > A little bit, but not nearly enough to figure out how the two overlap and do something about it. I've never had a false positive report involving my GENERIC_RDNS, so it can't be *that* bad. If it ever causes an issue I'll probably drop the rule entirely.
