[SURBL-Discuss] Re: Feature Request: Whitelist_DNSRBL

Matt Kettler mkettler_sa at comcast.net
Wed Dec 8 16:26:15 CET 2004

At 10:17 AM 12/8/2004 -0500, Chris Santerre wrote:
>OK, we know that the popular domains like yahoo.com and such are hard coded
>into SA to be skipped on DNSRBL lookups. But it would be great to have a
>function to add more locally.

Um. They are?? AFAIK there are absolutely no whitelists to the DNSRBLs in 
SA itself.

Don't confuse the "EXISTING_DOMAINS" list in DNS.pm with a whitelist.

That's actually a list of domains that are used to test if your DNS is 
working if you don't have dns_available set to yes. SA does a quick MX 
query for one of the domains in the list, and if it gets an answer, it 
knows it's working...

However, I do agree it would be nice to be able to have a DNSBL whitelist 
capability, if for no other reason than fixing any listings that might 
cause short-term FPs.

>Thinking one step bigger, it would be even better to feed this a file. This
>way maybe SURBL can create a file for the top hit legit domains. Then using
>SARE and RDJ, people could update that. This would reduce a lot of traffic
>and time.

Wait, now you're bringing SURBL into this.. are you talking normal DNSRBLS, 
or URIDNSBLS? Or both?

Was the whitelist you were referring to really the SURBL server-side whitelist?

>This might also help with the mysterious bug we have seen where some local
>domains are being flagged as SURBL hit, when they aren't in SURBL. Perhaps
>whitelisting local domains so they are skipped would do away with this.

Agreed.. It would provide users a short-term fix, although really the 
problem does need to be rooted out at some point..

>Thoughts, suggestions, or coffee?

All of the above?

More information about the Discuss mailing list