On 1/4/13 8:38 AM, "Kris Deugau" <kdeu...@vianet.ca> wrote:
> Alexandre Boyer wrote: >> Hi there, >> >> Why dont you perform those checks at the pre-data level, within postfix? > > Because you don't absolutely trust the DNSBL as a one-shot > "this-is-spam" test, but you want to use its data to influence the > spam/not-spam decision. And, uridnsbls look at body text for uris embedded inside the message, something that postfix doesn't do terribly well (which is why you need to test these sorts of things after normalizing the text, which SpamAssassin does very well..) The tack I would probably want to take would be to convince bind that the public domains are, in fact, local, and then allow the standard rules to query the "public" addresses, but respond to those queries from your local rbldnsd... -- Daniel J McDonald, CCIE # 2495, CISSP # 78281