I like EE's explaination. Thanks, EE. Slamp, care to update the wiki?
Erik Espinoza wrote: > Slamp, that's not how dnlsbl's work > > DNS Blacklists work by using txt entries. > > For example, this ip address attempted to send me mail, but was banned > by spamhaus. > 70.103.74.235 > > So you put the order of the octets in reverse and put the dnsbl > suffix. Then you look for the txt record: > $ host -t txt 235.74.103.70.sbl-xbl.spamhaus.org > 235.74.103.70.sbl-xbl.spamhaus.org text > "http://www.spamhaus.org/SBL/sbl.lasso?query=SBL47341"; > > One of Google's mail servers is 66.249.93.114, so I do the same to google: > $ host -t txt 114.93.249.66.sbl-xbl.spamhaus.org > Host 114.93.249.66.sbl-xbl.spamhaus.org not found: 3(NXDOMAIN) > > The Google one is not listed in spamhaus, so I get an NXDOMAIN. > > "ping" doesn't come to the equation with DNSBL. > > Thanks, > Erik > On 10/11/06, slamp slamp <[EMAIL PROTECTED]> wrote: >> so basicly these are dead hosts because they do not point anywhere. i >> think these are part of the qmailtoaster-plus, so it might be a good >> idea to take them out. >> >> # dig dnsbl.antispam.or.id >> >> ; <<>> DiG 9.2.4 <<>> dnsbl.antispam.or.id >> ;; global options: printcmd >> ;; Got answer: >> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 62446 >> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 >> >> ;; QUESTION SECTION: >> ;dnsbl.antispam.or.id. IN A >> >> ;; Query time: 1 msec >> ;; SERVER: 127.0.0.1#53(127.0.0.1) >> ;; WHEN: Wed Oct 11 16:22:42 2006 >> ;; MSG SIZE rcvd: 38 >> >> >> # dig list.dsbl.org >> >> ; <<>> DiG 9.2.4 <<>> list.dsbl.org >> ;; global options: printcmd >> ;; Got answer: >> ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 5171 >> ;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0 >> >> ;; QUESTION SECTION: >> ;list.dsbl.org. IN A >> >> ;; Query time: 1151 msec >> ;; SERVER: 127.0.0.1#53(127.0.0.1) >> ;; WHEN: Wed Oct 11 16:22:37 2006 >> ;; MSG SIZE rcvd: 31 >> >> On 10/11/06, Eric Shubes <[EMAIL PROTECTED]> wrote: >> > slamp slamp wrote: >> > > are the RBL's supposed to be pingable? >> > >> > Not necessarily. >> > >> > > the others i didn't list here >> > > because they replied to my ping. >> > > >> > > # ping dnsbl.antispam.or.id >> > > ping: unknown host dnsbl.antispam.or.id >> > > >> > > # ping list.dsbl.org >> > > ping: unknown host list.dsbl.org >> > > >> > > wouldn't this slow down toaster if these hosts are not there? >> > > >> > >> > Yes. >> > >> > Try >> > # dig dnsbl.antispam.or.id >> > # dig list.dsbl.org >> > >> > The reply should come from your caching DNS server: >> > ;; SERVER: 127.0.0.1#53(127.0.0.1) >> > >> > -- >> > -Eric 'shubes' >> > -- -Eric 'shubes' --------------------------------------------------------------------- QmailToaster hosted by: VR Hosted <http://www.vr.org> --------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
