Yahoo Groups archive

Milter-greylist

Index last updated: 2026-04-28 23:32 UTC

Thread

dnsrbl: how to handle list.dnswl.org return codes?

dnsrbl: how to handle list.dnswl.org return codes?

2016-11-30 by Marcus Schopen

Hi,

I'd like to whitelist IPs listed on lists.dnswl.org with trust "high", 
which means a return code of

   127.0.x.3

x can be a value from 2 up to 15, depending on the category of the 
sending host ( see: https://www.dnswl.org/?page_id=15#returncodes ).

How would a dnsrbl rule look like? Are regular expressions allowed?

   dnsrbl "MTAWL" list.dnswl.org ????

Ciao!

Re: [milter-greylist] dnsrbl: how to handle list.dnswl.org return codes?

2016-12-01 by Marcus Schopen

Hi,

as I understand there is no addr regex matching implemented right now. A 
workaround could be to use urlcheck to call an external web script to do 
the dns check and return properties depending on the trustworthiness 
score which milter-greylist can handle then:

----
urlcheck "WL_DNSWL" "https://yourdomain/dnswl.php?revip=%j" 5 getprop
dnsrbl "WL_SPAMHAUS" swl.spamhaus.org 127.0.2.0/24

racl continue rset $wl_score=0
racl continue rset $wl_dnswl_trustscore="-1"

racl continue urlcheck "WL_DNSWL" $wl_dnswl_trustscore == 3 set 
$wl_score+=1
racl continue dnsrbl "WL_SPAMHAUS" set $wl_score+=1

racl "WL_DNSWL" whitelist $wl_score >= 1
----

These rules whitelist a sending host which is know by swl.spamhaus.org 
or has a "high" score (= 3) on list.dnswl.org. [1] A basic php script 
for urlcheck is attached.

Any other ideas?

Ciao
Marcus

[1] https://www.dnswl.org/?page_id=15

Attachments

Re: [milter-greylist] dnsrbl: how to handle list.dnswl.org return codes?

2016-12-01 by Benoit Branciard

A simple way to address this peculiar need would be to implement full 
netmask matching in milter-greylist's "dnsrbl" clause instead of (or as 
an alternative to) CIDR mask.

This would allow something like:

dnsrbl "DNSWL" list.dnswl.org 127.0.0.3/255.255.0.255

Regular expressions could do the job as well, but somewhat heavier...



Le 30/11/2016 \ufffd 18:18, Marcus Schopen lists-yahoogroups@... 
[milter-greylist] a \ufffdcrit :
> Hi,
>
> I'd like to whitelist IPs listed on lists.dnswl.org with trust "high",
> which means a return code of
>
>    127.0.x.3
>
> x can be a value from 2 up to 15, depending on the category of the
> sending host ( see: https://www.dnswl.org/?page_id=15#returncodes ).
>
> How would a dnsrbl rule look like? Are regular expressions allowed?
>
>    dnsrbl "MTAWL" list.dnswl.org ????
>
> Ciao!


-- 
Benoit BRANCIARD
Service InfraStructures (SIS)
Direction du Syst\ufffdme d'Information et des Usages Num\ufffdriques (DSIUN)
Universit\ufffd Paris 1 Panth\ufffdon-Sorbonne
Centre Pierre Mend\ufffds France
90 rue de Tolbiac - 75634 Paris cedex 13 - France
Bur. B406 - T\ufffdl +33 1 44 07 89 68 - Fax +33 1 44 07 89 66
Accueil: +33 1 44 07 89 65 - Assistance-DSIUN@...
http://dsi.univ-paris1.fr

Move to quarantaine

This moves the raw source file on disk only. The archive index is not changed automatically, so you still need to run a manual refresh afterward.