Wietse:
> >See "man 5 resolver" for timeouts, retry counts, etc.
>
> But clients of a typical resolver library (e.g. Postfix) may
> optionally request either more or fewer retries. No?
>
> So I was asking what Postfix does.
There is no supported API for retry/timeout settings as far as I
can tell. Whacking bits in the __res structure does not count.
Maybe it can be set with environment variables, but that
may require support to do:
import_environment = PATH=xxx, {RES_OPTIONS = stuff with spaces}, ...
I can add a few lines of code to support { ... } if that helps.
> Also, I was sort-of indirectly asking whether or not Postfix
> has any in-built mechanism that might automagically spot
> malfunctioning blacklist servers and disable their further
> use, you know, in order to prevent inbound stuff from getting
> all backed up.
Postscreen has its own time limit. That possible because the
lookup is done in a different process.
Postfix does not maintain state about good/bad DNSXL servers. Don't
use bad DNSXL servers, or use postscreen's time limits.
Wietse
