local changes to a domain

Michael Grant mgrant at grant.org
Thu Jan 29 22:35:03 UTC 2015


Thanks Mark and Tony.  I like it.

This works, but what if someone turned around and queried my dns server to
use this rbl?

One simple fix for this would be to use a bogus domain like .local. or
maybe part of .localhost.

rbl.local. DNAME 1234-1234-1234.some-rbl.com.

Michael Grant



On Thu, Jan 29, 2015 at 12:30 AM, Mark Andrews <marka at isc.org> wrote:

>
>         rbl.<mydomain>. DNAME 1234-1234-1234.some-rbl.com.
>
> In message <CAJCaPNTj90xRT9BEed2qTGc7C4a2xFA6QMB7axT=+=
> 5HjrZkog at mail.gmail.com>
> , Michael Grant writes:
> >
> > I could also have called the subject of this mail 'augmented reality'.
> >
> > I pay to use an RBL.  The RBL has provided me a license key that I simply
> > tack onto their domain name like 1234-1234-1234.some-rbl.com.  As
> normal,
> > queries go to something like 4.3.2.1.1234-1234-1234.some-rbl.com. to
> query
> > the if the ip address 1.2.3.4 is in their rbl.
> >
> > Here's my problem.  As mail passes through my system and is marked up by
> > spamassassin, spamassassin kindly puts the domain name including my
> license
> > key into the headers when someone is on this rbl.
> >
> > One way I thought about solving this would be to put make my local
> caching
> > bind do a sort of "alias" or "augment the reality" of this domain locally
> > for me.  For example create a local version of
> xxxx-xxxx-xxxx.some-rbl.com
> > that when I query it, my local dns server turns around and queries
> > 1234-1234-1234.some-rbl.com (plus any sub domains tacked on).  So in my
> > spamassassin conf, I would only put xxxx-xxxx-xxxx.some-rbl.com.  Thus,
> my
> > license key would never leak out and I wouldn't have to modify anything
> in
> > spamassassin.  I hope this is clear.
> >
> > Is this possible?  It's like I need to create my own version of the zone
> > file for some-rbl.com but only part of it (the one line) and for
> everything
> > else, it is looked up normally by looking up some-rbl.com.  If so, how
> > might I do this in bind?
> >
> > Thanks.
> >
> > Michael Grant
> >
> > --001a11c37edc38927d050dbea1c9
> > Content-Type: text/html; charset=ISO-8859-1
> > Content-Transfer-Encoding: quoted-printable
> >
> > <div dir=3D"ltr">I could also have called the subject of this mail
> 'aug=
> > mented reality'.<div><br></div><div>I pay to use an RBL.=A0 The RBL
> has=
> >  provided me a license key that I simply tack onto their domain name
> like <=
> > a href=3D"http://1234-1234-1234.some-rbl.com">
> 1234-1234-1234.some-rbl.com</=
> > a>.=A0 As normal, queries go to something like <a href=3D"
> http://4.3.2.1.12=
> > 34-1234-1234.some-rbl.com">4.3.2.1.1234-1234-1234.some-rbl.com</a>. to
> quer=
> > y the if the ip address 1.2.3.4 is in their
> rbl.</div><div><br></div><div>H=
> > ere's my problem.=A0 As mail passes through my system and is marked
> up =
> > by spamassassin, spamassassin kindly puts the domain name including my
> lice=
> > nse key into the headers when someone is on this
> rbl.<br></div><div><br></d=
> > iv><div>One way I thought about solving this would be to put make my
> local =
> > caching bind do a sort of "alias" or "augment the
> reality&qu=
> > ot; of this domain locally for me.=A0 For example create a local version
> of=
> >  <a href=3D"http://xxxx-xxxx-xxxx.some-rbl.com">
> xxxx-xxxx-xxxx.some-rbl.com=
> > </a> that when I query it, my local dns server turns around and queries
> <a =
> > href=3D"http://1234-1234-1234.some-rbl.com">1234-1234-1234.some-rbl.com
> </a>=
> >  (plus any sub domains tacked on).=A0 So in my spamassassin conf, I
> would o=
> > nly put <a href=3D"http://xxxx-xxxx-xxxx.some-rbl.com
> ">xxxx-xxxx-xxxx.some-=
> > rbl.com</a>.=A0 Thus, my license key would never leak out and I
> wouldn'=
> > t have to modify anything in spamassassin.=A0 I hope this is
> clear.</div><d=
> > iv><br></div><div>Is this possible?=A0 It's like I need to create my
> ow=
> > n version of the zone file for <a href=3D"http://some-rbl.com">
> some-rbl.com=
> > </a> but only part of it (the one line) and for everything else, it is
> look=
> > ed up normally by looking up <a href=3D"http://some-rbl.com">
> some-rbl.com</=
> > a>.=A0 If so, how might I do this in bind?
> =A0</div><div><br></div><div>Tha=
> > nks.</div><div><br></div><div>Michael Grant</div></div>
> >
> > --001a11c37edc38927d050dbea1c9--
> >
> > --===============3081766438372111301==
> > Content-Type: text/plain; charset="us-ascii"
> > MIME-Version: 1.0
> > Content-Transfer-Encoding: 7bit
> > Content-Disposition: inline
> >
> > _______________________________________________
> > Please visit https://lists.isc.org/mailman/listinfo/bind-users to
> unsubscribe
> >  from this list
> >
> > bind-users mailing list
> > bind-users at lists.isc.org
> > https://lists.isc.org/mailman/listinfo/bind-users
> > --===============3081766438372111301==--
> --
> Mark Andrews, ISC
> 1 Seymour St., Dundas Valley, NSW 2117, Australia
> PHONE: +61 2 9871 4742                 INTERNET: marka at isc.org
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.isc.org/pipermail/bind-users/attachments/20150129/d12ee6ce/attachment.html>


More information about the bind-users mailing list