RRL probably not useful for DNS IP blacklists,
Vernon Schryver
vjs at rhyolite.com
Tue Sep 24 13:40:27 UTC 2013
> From: Noel Butler <noel.butler at ausics.net>
> We used to run our int bl on bind, it was a resource hog compared to
> rbldnsd
> But there is no way in hell, I'd run rbldnsd on anything else other
> than a BL,
>
> IMO, they are both designed to do different things, and they both do
> their own thing, much better than the other because if it.
10 years ago rbldnsd was the right choice for a DNSBL. Today rbldnsd
is an egregious mistake engrained the uninformed and unexamined
preconceptions and prejudices of DNSBL users. The hand wringing about
IPv6 spam ending the usefulness of DNSBLs and the proposals to put
B-trees into the DNS wire protocol make only if you assume that rsync
is the only way to distribute DNSBL data and that wildcards cannot be
used in DNSBLs because rbldnsd didn't like them and that rsync is the
only way to distribute DNSBL data.
Vernon Schryver vjs at rhyolite.com
More information about the bind-users
mailing list