FTR:
these custom rules are apparently plain wrong.
Assuming you have a Spamhaus datefeed running on what you describe as
dbl.zen.myinternalrbl.com / zen.myinternalrbl.com
URI-DNSBL is querying for a NS name against DBL which hardly produce
hit so pointless rule.
URI-A could produce a hit on zen but its anybody's guess what that rule
looks like.
before you report potential SA isssues, make sure your custom rules work.
On 09/18/2013 10:09 AM, Axb wrote:
On 09/18/2013 09:48 AM, Abhijeet Rastogi wrote:
The below log happens when I've scores set as 0.
$ cat /etc/mail/spamassassin/local.cf | grep -E 'URI-(NS|A)'
score URI-NS 0
score URI-A 0
these rules are not part of SA's ruleset.
if you don't want these queries why have such custom rules, in the first
place?
If you see the same effect happening with SA's default ruleset, pls
submit a bug /evidence and explain how to reproduce with SA data, not
private BLs/rules
$ grep 'async: starting' spoof_sa_log
spamd[23782]: async: starting: URI-DNSBL,
DNSBL:dbl.zen.myinternalrbl.com.:domain.com (timeout 15.0s, min 3.0s)
spamd[23782]: async: starting: URI-NS, NS:domain.com (timeout 15.0s,
min 3.0s)
spamd[23782]: async: starting: URI-A, A:ns68.domaincontrol.com.
(timeout 15.0s, min 3.0s)
spamd[23782]: async: starting: URI-A, A:ns67.domaincontrol.com.
(timeout 15.0s, min 3.0s)
spamd[23782]: async: starting: URI-DNSBL,
DNSBL:zen.myinternalrbl.com.:1.2.3.4 (timeout 15.0s, min 3.0s)
spamd[23782]: async: starting: URI-DNSBL,
DNSBL:zen.myinternalrbl.com.:5.6.7.8 (timeout 15.0s, min 3.0s)
I don't want queries URI-A and URI-NS to happen. URI-DNSBL is fine but
why others?
On Wed, Sep 18, 2013 at 1:05 PM, Axb <[email protected]> wrote:
which rules do you see doing such queries?
What happens if you score those rules to zero?
THey are relevant to URIBL checks because they check for A or NS recs
for a
URI in a msg's body.
this is also documented in URIBL.pm
On 09/18/2013 08:31 AM, Abhijeet Rastogi wrote:
That's the thing. Why do they happen? I don't want them to happen?
What's their relevance in a URIBL check?
On Tue, Sep 17, 2013 at 5:42 PM, Axb <[email protected]> wrote:
On 09/17/2013 08:35 AM, Abhijeet Rastogi wrote:
HI Axb,
But, we don't require A and NS lookups for a domain to query for it's
existence in URIBL, right? I don't see the point of doing the NS
lookups in URIBL module.
these lookups check a URI domain's NS and A record. If not there,
where
would you expect it to happen (for a URL in msg's body) ?
On Tue, Sep 17, 2013 at 11:08 AM, Axb <[email protected]> wrote:
On 09/17/2013 06:59 AM, Abhijeet Rastogi wrote:
Hi all,
Short Version: See subject.
Long Version: Read below.
So far, I've got a nice feedback from the community, thanks for
that.
I want to know why are DNS queries like URI-A and URI-NS done?
For a
specific case that I'm trying to use, I want spamassassin to use
just
DNSBL and nothing else.
I don't see URI-A and URI-NS defined in either default rules
(/use/share/spamassassin/) or in sa-update related rules.
(/var/lib/spamassassin).
Setting score for URI-A and URI-NS also doesn't do anything. I
could
only see it in action in URIDNSBL.pm under sub-routine
completed_lookup_callback. Is there a reason why URI-A and
URI-NS are
done unconditionally and don't have a option to disable them?
Is there a way I can disable them?
disable URIBL lookups by disabling plugin in .pre file (as I
suggested
before that you revise the .pre files)
