Confused about "Use RBL checks" on/off vs. DNSBL

C

creeble

New Member
Sep 18, 2023
17
0
1
The documentation has a clear explanation of "DNSBL":

To disable DNSBL checks entirely, remove any DNSBL Sites entries inMail Proxy Options.

but I do not understand what "Use RBL checks" in Spam Detector then means. When it is on, what RBL sites/settings are used? The (PMG) documentation says only:

rbl_checks: <boolean> (default = 1)
Enable real time blacklists (RBL) checks.

I tried to find this information in the Forum, but couldn't find anything but references to configuring DNSBL sites.
 
Last edited:
creeble said:
To disable DNSBL checks entirely, remove any DNSBL Sites entries inMail Proxy Options.
Click to expand...
This one sets postscreen_dnsbl_sites - see: https://www.postfix.org/POSTSCREEN_README.html

creeble said:
but I do not understand what "Use RBL checks" in Spam Detector then means.
Click to expand...
This one sets the appropriate options for spamassassin to use their built-in dnsbl lookups - see
https://cwiki.apache.org/confluence/display/spamassassin/DnsBlocklists

I hope this helps!
 
Okay, I think I understand.

The "Use RBL checks" is really a misnomer according to the (spamassassin) documentation you pointed to, and it actually activates a series of pre-programmed DNSBL checks, which are not configurable easily except by setting their result score to 0.

Seems like it's better to use the DNSBL settings, where servers can be named explicitly.
 
creeble said:
The "Use RBL checks" is really a misnomer according to the (spamassassin) documentation you pointed to,
Click to expand...
Why do you think so? - For me it fits quite well - given that the SpamAssassin Option to disable them is named skip_rbl_checks

creeble said:
Seems like it's better to use the DNSBL settings, where servers can be named explicitly.
Click to expand...
some of the Spamassassin checks do other things - the postscreen_dnsbl_sites only checks the sending IP - on the other hand - the URIBL checks in SA do check the URLs occurring inside the mail - both have their merit - and for both the time of check is quite appropriate
 
creeble said:
The "Use RBL checks" is really a misnomer according to the (spamassassin) documentation you pointed to,
Click to expand...
Why do you think so? - For me it fits quite well - given that the SpamAssassin Option to disable them is named skip_rbl_checks
Click to expand...
I'm going by the documentation you pointed to:
DNS Blocklists are a common form of network-accessible database used in spam detection. They're also referred to as "DNSBLs", "DNS Blacklists" and "RBLs". (The latter usage is incorrect; see RBL.)
Click to expand...
But it seems that they aren't entirely correct, as the SpamAssassin checks do both DNSBL checks and some actual RBL checks?
 
You must log in or register to reply here.
Top Bottom