Rich Wales:
> > That is not entirely correct - different tests have different
> > expiration times. postscreen_cache_retention_time says what
> > happens with an IP address after *all* its tests expire.
>
> So, then, if I want to be able to respond more quickly to changes in an
> SMTP client's DNSBL status, should I be looking at postscreen_dnsbl_ttl
> instead (changing it from the default of 1 hour to something smaller)?
Perhaps. This would be a reason to use the actual reply TTL,
and to use postscreen_dnsbl_ttl as an upper bound.
Wietse
