Here's the policy: https://cwiki.apache.org/confluence/display/spamassassin/DnsBlocklistsInclusionPolicy
On 7/10/2020 7:43 AM, Axb wrote: > On 7/10/20 1:40 PM, Philipp Ewald wrote: >>> in local.cf add: >>> >>> dns_query_restriction deny spamhaus.org >>> >>> that should fix the problem and survive SA updates >> >> Many Thank! now it's work. >> >> but why is this enabled by default? > > because, under fair use, it's free for all. > > Most smaller sites have no problem unless they use third party DNS > resolvers which are blocked. > if you're local resolver is forwarding to some ISP's resolver then you > also get blocked. > >> >> Am 10.07.20 um 13:23 schrieb Axb: >>> On 7/10/20 1:20 PM, Philipp Ewald wrote: >>>> Hey everyone, >>>> >>>> we got a nice mail from spamhaus. >>>> We have used their DNS Query's. >>>> >>>> Important is that we thought we have disabled them by: >>>> score __RCVD_IN_ZEN 0 >>>> >>>> But tcpdump says we make dns querys to spamhaus, but the result got >>>> ignored. >>> >>> you forgot that DBL rules also query Spamhaus >>> >>>> I have removed the configuration lines in /usr/share/spamassassin >>>> but after update the configuration comes back. >>>> >>>> How do i disable them right? and why got this behavior changed? >>> >>> in local.cf add: >>> >>> dns_query_restriction deny spamhaus.org >>> >>> that should fix the problem and survive SA updates >>> >>> h2h >> > > -- Kevin A. McGrail kmcgr...@apache.org Member, Apache Software Foundation Chair Emeritus Apache SpamAssassin Project https://www.linkedin.com/in/kmcgrail - 703.798.0171
