On Wed, Aug 16, 2000 at 09:55:53AM -0500, Ben Beuchler wrote:
> On Wed, Aug 16, 2000 at 07:08:28AM -0500, Mate Wierdl wrote:
>
> > BTWY, I know many people are attached to using DNS for rbl lookups,
> > but would not it be relatively simple to implement a server software
> > using tcpserver that would just lookup an IP number in a .cdb database
> > of IP numbers, and send an appropriate response? A client might be
> > similarly simple to implement using tcpclient.
>
> That would not allow for the rapid changes necessary in a blackhole
> list. Imagine you are an ISP with several thousand customers. Through
> an oversight, your mail server is blacklisted. Would you rather wait
> for the tens or hundreds of thousands of sysadmins out there
> administering mail servers to remove you from their blackhole list or
> just submit it to the maintainer of the list and have it fixed in minute
> or hours?
I do not understand this comment: it seems you are arguing against the
very existence of rbldns. And I was asking if rbldns could be
implemented in a less restrictive way---without the need for a domain
delegation. As a separate but related question, I was also asking if
DNS needs to be involved in the first place.
The fact is a few thousand mail servers running rblsmtpd cannot use
relays.mail-abuse.org. So now they all have to apply for a domain so
that they can use rbldns. Or they can start patching rblsmtpd to use
A records---until relays.mail-abuse.org will change the record
structure again.
To address your concern: a reasonable site running rbldns would
transfer the zone from relays.mail-abuse.org frequently, so a change
at relays.mail-abuse.org would propagate to the mirrors quite quickly.
Mate
