Re: [exim] ipv6 dnsbl errors

Top Page
Delete this message
Reply to this message
Author: Jakob Hirsch
Date:  
To: exim-users
Subject: Re: [exim] ipv6 dnsbl errors
Quoting Phil Pennock:

>>    drop    log_message   = REJECT mail from rbl
>>            message       = rejected because $sender_host_address is \
>>                            in  a black list at \
>>                            $dnslist_domain\n$dnslist_text
>>            dnslists      = blackholes.mail-abuse.org
> I actually set up the isip4 check early so hadn't noticed any IPv6
> problems with the lookup code but it looks suspiciously like
> list-separation is happening on the IP address using the default
> list-separator of ":"; that would definitely be a bug, if so.


Huh? Which list? The only list involved here is dnslists, and there's no
ipv6 address given.

For dnslists and ipv6, read 40.31 in den the spec:
> If Exim is asked to do a dnslist lookup for an IPv6 address, it inverts it
> nibble by nibble. For example, if the calling host's IP address is
> 3ffe:ffff:836f:0a00:000a:0800:200a:c031, Exim might look up
>
> 1.3.0.c.a.0.0.2.0.0.8.0.a.0.0.0.0.0.a.0.f.6.3.8.
> f.f.f.f.e.f.f.3.blackholes.mail-abuse.org


It seems that the used dnslist server simply takes the first 4 elements,
which in most (if not all) cases will be 2.0.0.1. I would consider that
a flaw.