On 1/9/2023 3:55 AM, Matus UHLAR - fantomas wrote:
Until I can get around to updating I'm considering just nuking the actual tests from the ruleset.
Much easier and reliable way:

dns_query_restriction deny spamhaus.org

Charles Sprickman skrev den 2023-01-09 08:04:
Trying this on half the pair, I assume this hits all subdomains of spamhaus.org?

Never ran into that parameter in my searches for this.

On 09.01.23 09:26, Benny Pedersen wrote:
never read perldoc Mail::SpamAssassin::Conf ?

some people don't repeatedly read it thorough.

Henrik forgot this is pr domain, so fully domain including subdomain seen in "rndc querylog" in bind logs !

spamassassin -D -t spamtestmsg 2>&1 | less

dns_query_restriction deny dwl.dnswl.org list.dnswl.org
dns_query_restriction deny multi.uribl.com

imho score foo 0 is a bug

no, it's documented feature - rules with score 0 are not run.

However, joe a aka the OP should be more interested in finding out why are his DNS queries going through an open resolver and fixing the real issue.


Right you are.  It now appears resolved (cough, cough . . .).

Spamhaus site provided this quick test: "dig 2.0.0.127.zen.spamhaus.org +short" which with variant "dig @my.local.dns.serv 2.0.0.127.zen.spamhaus.org +short", allowed me to pretty quickly sort it out.

A lot of cobwebs needed to be cleared out, but, seems to be working as advertised.

Thanks to all for their patience and suggestions.

joe a.

Reply via email to