Re: [exim] Blacklist works strange

Top Page
Delete this message
Reply to this message
Author: Todd Lyons
Date:  
To: James Brown
CC: exim-users
Subject: Re: [exim] Blacklist works strange
On Tue, Jan 4, 2011 at 10:29 AM, James Brown <jbrownfirst@???> wrote:
> FreeBSD 8.1-STABLE exim-4.72
>
> I included in my '/usr/local/etc/exim/dnsblists' some domains in the
> next format:
>
> shc.org
> bluewin.ch
> breakthru.com
>
> and had the next result:
>
>  "H=moria.csail.mit.edu (moria.seul.org) [128.31.0.34]
> F=<owner-or-talk@???> rejected RCPT <user@???>:
> rejected because 128.31.0.34 is in a black list at breakthru.com\n" in


breakthru.com has a wildcard so ANYTHING you look for there will come
back with an answer, which exim's blacklist lookup is configured by
you to reject.

> But the ip-address of 128.31.0.34 is not belong to 'breakthru.com':
> dig -x 128.31.0.34
> 34.0.31.128.in-addr.arpa. 1800  IN      PTR     moria.csail.mit.edu.


It's actually looking up 34.0.31.128.breakthru.com, which returns
208.88.180.117. ANYTHING.breakthru.com returns that IP, so it will
always hit, which will always cause your mail server to reject.

> So, that blacklisting had as a result blocking the mail which I didn't
> want to block.
> What I did wrong or is there a bug in my version of an exim?


You're using breakthru.com to do RBL lookups, but you shouldn't be.
Remove it from your dns blacklists configuration.
--
Regards...      Todd
I seek the truth...it is only persistence in self-delusion and
ignorance that does harm.  -- Marcus Aurealius