>>>>> "Tony" == Tony Finch <dot@???> writes:
Tony> The idea here was to implement something like SpamAssassin
Tony> 3.0's new URIDNSBL test, though for SMTP-time details (e.g. do
Tony> DNSBL lookups on the name servers hosting the domain name of
Tony> the return path, helo, relevant in-addr.arpa space, etc) rather
Tony> than for domain names found in the body of the message.
This can be done in ACLs already - _but_ that currently doesn't work well
due to the deferral problem with dnsdb; it's very common with helo and
return-path domains to have problems resolving the nameservers even though
the domain itself is resolvable. (People come up with the most creative
ways to break DNS...)
I looked at patching that - but the lookup interface doesn't exactly make
it easy.
--
Andrew, Supernews
http://www.supernews.com