The SA config is probably a better solution than the bind exemptions.
As was pointed out elsewhere in this thread, URIBL is not the only
DNS-based blacklist that enforces usage limits and it may not be as easy
to tell that you are being blocked with some of the others.
If you add in the 'dns_server' entry to the config, then SA will use the
local nameserver for everything and you don't have to worry about
keeping track of which blacklist queries you need to exempt from forwarding.
Set your resolv.conf back to your ISP, remove forwarding from your local
name server, and add 'dns_server 127.0.0.1' to your local.cf.
Bowie
On 9/16/2015 5:44 AM, Marc Richter wrote:
Hi Adam,
that's a great workarround and perfectly fits my needs! Thank you for
that! :)
I'll use this if I cannot find out why my exemptions do not work in a
reasonable amount of time.
Best regards,
Marc
Am 15.09.2015 um 20:14 schrieb Adam Major:
Hi.
If you don't want change DNS resolver for all DNS queries from your
server you can add in SA config line:
dns_server x.y.z.k:53
where z.y.z.k is IP DNS server using to resolve only by SA.
Then in resolv.conf you can use different (ex. ISP) DNS server.
More info:
http://spamassassin.apache.org/full/3.4.x/doc/Mail_SpamAssassin_Conf.html#port
Best Regards.
