[rbldnsd] Feature request: DNSSEC
Florian Weimer
fw at deneb.enyo.de
Sat Jul 12 00:50:29 MSD 2008
* Victor Duchovni:
>> Do you really list 420 million individual IP addresses?
>
> Yes, using RBLDNS macro expansion:
>
> :127.0.0.10:http://www.spamhaus.org/query/bl?ip=$
> prefix1/mask1 :11
> prefix2/mask2 :10
>
> The dynamic TXT record template substitutes the actual IP address for '$'
> on the fly.
I'm sorry, you misunderstood. I was wondering if you've really got 420
million different records in the Spamhaus database which is referenced
by that URL.
>> Couldn't you pass the CIDR range you list to the web front end?
>
> No, because when the user later comes back with the URL in the reject
> message, it needs to be for the specific IP, so it can show the *current*
> status of *that* IP.
Yuck. This strikes me as significant misuse of DNS.
So let's do SBL first. 8-)
More information about the rbldnsd
mailing list