On 8/7/2012 11:54 AM, Adam Katz wrote:
On 08/06/2012 08:01 AM, Bowie Bailey wrote:
Actually, since these are more complex rules, just setting the score to
0 will not stop the DNS check. This is what I have in my config:
# Blocking Zen with MTA...don't need these
meta RCVD_IN_SBL (0)
meta RCVD_IN_XBL (0)
meta RCVD_IN_PBL (0)
score __RCVD_IN_ZEN 0
You have it backwards.
I'm pretty sure scoring a rule at zero will disable it, even the DNS
lookup, UNLESS it is an underscore-prefix rule (which is not scored).
Note that zeroing a meta rule that depends on a lookup does not disable
the dependent rule. Lookups in underscored rules can only be disabled
by redefining the rule.
Parentheses in metas are just like in math, so the above quoted
definitions surrounding a statement in them is redundant (unlike for
scores, which makes them relative). You'd likely do better with:
meta RCVD_IN_SBL 0
meta RCVD_IN_XBL 0
meta RCVD_IN_PBL 0
meta __RCVD_IN_ZEN 0
or
score RCVD_IN_SBL 0
score RCVD_IN_XBL 0
score RCVD_IN_PBL 0
meta __RCVD_IN_ZEN 0
I don't know where I found those settings. I did some testing and
verified that all three methods listed above will prevent the DNS query
from running.
I distinctly remember reading a while back that just setting the scores
to 0 on the DNS blacklist rules would disable the scoring rules, but
would not prevent the queries from running. I even had the score lines
you suggested in my local.cf file, but they were commented out and
replaced by the lines I posted. Maybe something has changed since then.
--
Bowie
