Daryl C. W. O'Shea wrote:
Mark Martinec wrote:
An alternative workaround: to SA 3.2.3 apply a patch in:
http://issues.apache.org/SpamAssassin/show_bug.cgi?id=5589
then you can specify per-zone timeouts, e.g.:
rbl_timeout 1.5 spamhaus.org
Doesn't disable DNS, but at least limits the time
wasted on waiting for responses.
Note that slow responses are uncharacteristic of Spamhaus and usually
indicate one of two things; (i) you've been blocked in which case you
never get a response; or (ii) you're blocking 53/TCP on your end and
you're not getting a response any time Spamhaus sends its big-ass
authority section.
Simply reducing the timeout when it's rare to see responses complete in
less than the timeout value is wasteful and a poor bandage.
And, if you're really concerned about time, get a local cache of the zone.
