Thanks Mark and Tony. I like it. This works, but what if someone turned around and queried my dns server to use this rbl?
One simple fix for this would be to use a bogus domain like .local. or maybe part of .localhost. rbl.local. DNAME 1234-1234-1234.some-rbl.com. Michael Grant On Thu, Jan 29, 2015 at 12:30 AM, Mark Andrews <ma...@isc.org> wrote: > > rbl.<mydomain>. DNAME 1234-1234-1234.some-rbl.com. > > In message <CAJCaPNTj90xRT9BEed2qTGc7C4a2xFA6QMB7axT=+= > 5hjrz...@mail.gmail.com> > , Michael Grant writes: > > > > I could also have called the subject of this mail 'augmented reality'. > > > > I pay to use an RBL. The RBL has provided me a license key that I simply > > tack onto their domain name like 1234-1234-1234.some-rbl.com. As > normal, > > queries go to something like 4.3.2.1.1234-1234-1234.some-rbl.com. to > query > > the if the ip address 1.2.3.4 is in their rbl. > > > > Here's my problem. As mail passes through my system and is marked up by > > spamassassin, spamassassin kindly puts the domain name including my > license > > key into the headers when someone is on this rbl. > > > > One way I thought about solving this would be to put make my local > caching > > bind do a sort of "alias" or "augment the reality" of this domain locally > > for me. For example create a local version of > xxxx-xxxx-xxxx.some-rbl.com > > that when I query it, my local dns server turns around and queries > > 1234-1234-1234.some-rbl.com (plus any sub domains tacked on). So in my > > spamassassin conf, I would only put xxxx-xxxx-xxxx.some-rbl.com. Thus, > my > > license key would never leak out and I wouldn't have to modify anything > in > > spamassassin. I hope this is clear. > > > > Is this possible? It's like I need to create my own version of the zone > > file for some-rbl.com but only part of it (the one line) and for > everything > > else, it is looked up normally by looking up some-rbl.com. If so, how > > might I do this in bind? > > > > Thanks. > > > > Michael Grant > > > > --001a11c37edc38927d050dbea1c9 > > Content-Type: text/html; charset=ISO-8859-1 > > Content-Transfer-Encoding: quoted-printable > > > > <div dir=3D"ltr">I could also have called the subject of this mail > 'aug= > > mented reality'.<div><br></div><div>I pay to use an RBL.=A0 The RBL > has= > > provided me a license key that I simply tack onto their domain name > like <= > > a href=3D"http://1234-1234-1234.some-rbl.com";> > 1234-1234-1234.some-rbl.com</= > > a>.=A0 As normal, queries go to something like <a href=3D" > http://4.3.2.1.12= > > 34-1234-1234.some-rbl.com">4.3.2.1.1234-1234-1234.some-rbl.com</a>. to > quer= > > y the if the ip address 1.2.3.4 is in their > rbl.</div><div><br></div><div>H= > > ere's my problem.=A0 As mail passes through my system and is marked > up = > > by spamassassin, spamassassin kindly puts the domain name including my > lice= > > nse key into the headers when someone is on this > rbl.<br></div><div><br></d= > > iv><div>One way I thought about solving this would be to put make my > local = > > caching bind do a sort of "alias" or "augment the > reality&qu= > > ot; of this domain locally for me.=A0 For example create a local version > of= > > <a href=3D"http://xxxx-xxxx-xxxx.some-rbl.com";> > xxxx-xxxx-xxxx.some-rbl.com= > > </a> that when I query it, my local dns server turns around and queries > <a = > > href=3D"http://1234-1234-1234.some-rbl.com";>1234-1234-1234.some-rbl.com > </a>= > > (plus any sub domains tacked on).=A0 So in my spamassassin conf, I > would o= > > nly put <a href=3D"http://xxxx-xxxx-xxxx.some-rbl.com > ">xxxx-xxxx-xxxx.some-= > > rbl.com</a>.=A0 Thus, my license key would never leak out and I > wouldn'= > > t have to modify anything in spamassassin.=A0 I hope this is > clear.</div><d= > > iv><br></div><div>Is this possible?=A0 It's like I need to create my > ow= > > n version of the zone file for <a href=3D"http://some-rbl.com";> > some-rbl.com= > > </a> but only part of it (the one line) and for everything else, it is > look= > > ed up normally by looking up <a href=3D"http://some-rbl.com";> > some-rbl.com</= > > a>.=A0 If so, how might I do this in bind? > =A0</div><div><br></div><div>Tha= > > nks.</div><div><br></div><div>Michael Grant</div></div> > > > > --001a11c37edc38927d050dbea1c9-- > > > > --===============3081766438372111301== > > Content-Type: text/plain; charset="us-ascii" > > MIME-Version: 1.0 > > Content-Transfer-Encoding: 7bit > > Content-Disposition: inline > > > > _______________________________________________ > > Please visit https://lists.isc.org/mailman/listinfo/bind-users to > unsubscribe > > from this list > > > > bind-users mailing list > > bind-users@lists.isc.org > > https://lists.isc.org/mailman/listinfo/bind-users > > --===============3081766438372111301==-- > -- > Mark Andrews, ISC > 1 Seymour St., Dundas Valley, NSW 2117, Australia > PHONE: +61 2 9871 4742 INTERNET: ma...@isc.org >
_______________________________________________ Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list bind-users mailing list bind-users@lists.isc.org https://lists.isc.org/mailman/listinfo/bind-users
