Bryan Scott wrote: > Ok. My fault for not knowing about the pre-connection hook. > I tweaked dnsbl to run at pre-connection time and it's working great. I > only use it on the "extremely trusted" blacklists, and have set up a > dnsbl-soft and a dnsbl-tagonly that handle the less perfect blacklists.
That's one way to handle it, but be warned that RBL's introduce lag into the operation, which you may not want to have before the SMTP transaction actually starts (i.e. before you send a banner). If you ever had issues with slow RBL queries, like say a distributed denial of service attack on sbl-xbl, your server will appear to be very slow in sending the greeting. This may be interpreted by some remote MTA's a temp failure, which could cause legitimate mail to be delayed. Just a thought... John
