Quoting Wietse Venema <wie...@porcupine.org>:
Patrick Ben Koetter:
- Do not delay on port 25 for MTA to MTA communication
With this. the sysadmin has no clue about what mail is blocked.
Even postscreen goes through great efforts to report the
sender and recipient of blocked mail.
Along these lines, would patching the enforce blacklist, so that it
logs the from/to without doing dnsbl's be useful? I can't think of a
purpose why, if you have them in the blacklist, you would also want to
do all those dns rbl lookups also, but I do want to get the from/to so
I can locate something if a user requests it.
This patch causes postscreen_blacklist_action = enforce to not
generate dnsbl lookups.
--- src/postscreen/postscreen_dnsbl.c 2012-01-09 19:31:52.000000000 -0500
+++ src/postscreen/postscreen_dnsbl.c 2012-03-10 08:10:46.261969063 -0500
@@ -491,6 +491,7 @@
* We therefore do not optimize the maximum out of this temporary
* implementation.
*/
+ if ( (((PSC_STATE *)context)->flags & PSC_STATE_FLAG_BLIST_FAIL) == 0) {
for (ht = dnsbl_site_list; *ht; ht++) {
if ((fd = LOCAL_CONNECT(psc_dnsbl_service, NON_BLOCKING, 1)) < 0) {
msg_warn("%s: connect to %s service: %m",
@@ -513,6 +514,7 @@
(char *) stream, DNSBLOG_TIMEOUT);
score->pending_lookups += 1;
}
+ }
return (PSC_CALL_BACK_INDEX_OF_LAST(score));
}
