Skip to Content.
Sympa Menu

discuss - Re: [opennic-discuss] letit2 [.] bit blacklist

discuss AT lists.opennicproject.org

Subject: Discuss mailing list

List archive

Re: [opennic-discuss] letit2 [.] bit blacklist


Chronological Thread 
    < Chronological >      < Thread >
  • From: Jeff Taylor <shdwdrgn AT sourpuss.net>
  • To: discuss AT lists.opennicproject.org
  • Subject: Re: [opennic-discuss] letit2 [.] bit blacklist
  • Date: Fri, 15 Sep 2017 20:56:44 -0600
  • Authentication-results: mx5.sourpuss.net; dmarc=none header.from=sourpuss.net
  • Dmarc-filter: OpenDMARC Filter v1.3.0 mx5.sourpuss.net 1FBB02D6EE
I've been reading into this... hmm interesting, but there IS a caveat.  Apparently you need Bind9.10 or higher, or there are some serious performance issues when using multiple RPZ zones, which could be an issue for some users.  Still very interesting, I'll have to play with it...


On 09/15/2017 07:13 PM, Jacob Bachmeyer wrote:
Jeff Taylor wrote:
Please looks at the output from the sample URLs.  Every one of them except the first general list is directly suitable for use by bind9.  I just 'wget -N' the URL and overwrite my existing config file, then 'rndc reload' to go live with the new data.

Or am I completely missing what you are asking...?

Response policy zones can be distributed using the same mechanisms that are used to distribute other DNS records.  Using them might be more efficient than an HTTP endpoint, or might not be; I do not know.  I just wanted to be sure that you know the option exists.

-- Jacob 



--------
You are a member of the OpenNIC Discuss list. 
You may unsubscribe by emailing discuss-unsubscribe AT lists.opennicproject.org


Archive powered by MHonArc 2.6.19.

Top of Page