DNSBLs and the LibAntispam


   ATENTION!!! THIS INFORMATION IS ONLY INTERESTING FOR DNSBL MAINTAINERS!!!

   Now the DNSBL query functions of LibAntispam will search, if an IP is indexed in a DNSBL list, for the RP entry in DNS table of the queried DNSBL list.
   For example, if open.mydnsblhost.org is queried by a MTA with LibAntispam support and an IP, 10.0.0.1, match. LibAntispam functions will get the TXT entry for this IP in list, will get too the RP entry and the TXT entry pointed by RP entry.
   This example is showed below:

		Fragment of DNS table for zone open.mydnsblhost.org


$TTL    86400

open.mydnsblhost.org  IN  SOA  ns.mydnsblhost.org. hostmaster.ns.mydnsblhost.org. (
                                2005010100      ; Serial
                                10800           ; Refresh
                                3600            ; Retry
                                2419200         ; Expire
                                86400 )         ; Minimum
          IN      NS      ns.mydnsblhost.org.
          IN      NS      ns2.mydnsblhost.org.
          IN      MX  0   mail.mydnsblhost.org
          IN      TXT     "Open-Relays machines List"
          IN      RP      myaddress.mydnsblhost.org. open.mydnsblhost.org.


1.0.0.10  IN   A     127.0.0.3
          IN   TXT   "See http://www.mydnsblhost.org/cgi-bin/lookup?host=10.0.0.1"
2.0.0.10  IN   A     127.0.0.3
          IN   TXT   "See http://www.mydnsblhost.org/cgi-bin/lookup?host=10.0.0.2"
3.0.0.10  IN   A     127.0.0.3
          IN   TXT   "See http://www.mydnsblhost.org/cgi-bin/lookup?host=10.0.0.3"

   When MTA with LibAntispam support query the DNSBL with the table above, it will get the classic TXT entry for IP 10.0.0.1 and will get the RP and the TXT entry in the after the SOA entry.

   The result will be a string like below showed:

Relaying denied by user "<somebody@inanywhere.org>" because "[10.0.0.1]" is indexed in DNSBL "Open-Relays machines List" that has administrative address <myaddress@mydnsblhost.org>. See http://www.mydnsblhost.org/cgi-bin/lookup?host=10.0.0.1.

   If the TXT pointed by RP entry don't exist. The result will be:
Relaying denied by user "<somebody@inanywhere.org>" because "[10.0.0.1]" is indexed in DNSBL that has administrative address <myaddress@mydnsblhost.org>. See http://www.mydnsblhost.org/cgi-bin/lookup?host=10.0.0.1.

   If the RP entry don't exist. Only the classical TXT entry for IP in the table will be showed:

Relaying denied by user "<somebody@inanywhere.org>". See http://www.mydnsblhost.org/cgi-bin/lookup?host=10.0.0.1.


   We strongly recommended to DNSBL maintainers to add the RP entry and the TXT entry (pointed by RP entry) in your DNSBL zone files in the future.
 
 
Copyright © 2002-2011 Rafael Jorge Csura Szendrodi