[rbldnsd] Pre-announce: rbldnsd-0.95pre

Michael Tokarev rbldnsd@corpit.ru
Tue, 27 May 2003 04:08:46 +0400 

After some expirience with real-world DNSBLs, notable NJABL.org
and SORBS.net, it was made obvious that rbldnsd lacks easy "subzone
maintenance".  For the current versions (prior to this prerelease),
for a DNSBL that consists of several subzones which are combined
somehow in base zone (and almost all of nowaday's DNSBLs are of this
sort), there should be a way to specify all the subzones together
with data inside a single file, to be able to add/remove/combine
subzones on all secondary nameservers from primary, to achieve atomic
file updates, and to combine all logically related data into one
entity.

The 0.95pre rbldnsd prerelease implements an attempt to address the
above issues, by introducing a new special dataset-container named
`combined', that acts as a container for several other datasets and
specifies subzones that should be serviced by every dataset included.

Here's an example of the new `combined' dataset usage, taken from
a manpage:

  Example  of the complete dataset that contains subzone `proxies'
  with a list of open proxies, subzone `relays'  with a list of open
  relays, subzone `multihop' with output IPs of multihop open relays,
  and the  base  zone  itself includes proxies and relays but not
  multihops:

     # common section
     $NS 1w ns1.ex.com
     $NS 1w ns2.ex.com
     $SOA 1w ns1.ex.com admin.ex.com 0 2h 2h 1w 1h
     # list of open proxies,
     # in `proxies' subzone and in base zone
     $DATASET ip4set proxies @
     :2:Open proxy, see http://bl.ex.com/proxy/$
     127.0.0.2
     127.0.0.10
     # list of open relays,
     # in `relays' subzone and in base zone
     $DATASET ip4set relays @
     :3:Open relay, see http://bl.ex.com/relay/$
     127.0.0.2
     127.0.2.10
     # list of optputs of multistage relays,
     # in `multihop' subzone only
     $DATASET ip4set multihop
     :4:Multihop open relay, see http://bl.ex.com/relay/$
     127.0.0.2
     127.0.9.12
     # for the base zone only,
     # include several additional records
     $DATASET generic @
     @ A 127.0.0.8
     www A 127.0.0.8
     @ MX mx.ex.com

More details about this new dataset are available in the
manpage.

This is NOT a production release yet, but it works and shows the
idea.  Any comments about this new feature, and about the whole
program, are welcome.

http://www.corpit.ru/mjt/rbldnsd.html - main info
http://www.corpit.ru/mjt/rbldnsd/     - download directory

/mjt