On 03.03.19 21:46, Mayhem wrote:
I was under the impression that Postscreen kept a cache of the IP addresses
that failed Pregreet / DNSBL tests.Then it would use those cached results to
drop clients immediately based on that previously cached results / expire
time.
What is throwing me off is this :
postscreen_dnsbl_max_ttl :
The maximum amount of time that postscreen(8) will use the result from a
successful DNS-based reputation test before a client IP address is required
to pass that test again.
--------------
If the IP address and the result is cached, why not use those results to
drop the connection until the TTL has expired?
spamhaus provides records with 60s TTL. Since the next connect came 10
minutes later, the TTL expired already.
--
Matus UHLAR - fantomas, uh...@fantomas.sk ; http://www.fantomas.sk/
Warning: I wish NOT to receive e-mail advertising to this address.
Varovanie: na tuto adresu chcem NEDOSTAVAT akukolvek reklamnu postu.
Depression is merely anger without enthusiasm.
