http://isc.incidents.org/diary.html?storyid=9685 -----Original Message----- From: nznog-bounces(a)list.waikato.ac.nz [mailto:nznog-bounces(a)list.waikato.ac.nz] On Behalf Of Jasper Bryant-Greene Sent: Friday, 8 October 2010 10:24 a.m. To: Andre Van Niekerk Cc: nznog(a)list.waikato.ac.nz Subject: Re: [nznog] SORBS had loopback listed in dnsbl? On 8/10/2010, at 9:53 AM, Andre Van Niekerk wrote:
Anyone have an issue yesterday with mail being categorized as spam due to SORBS listing 127.0.0.1 in their DNS BL DB? Had a few complaints from internal customers that mail was not getting through, and a cursory inspection of the logs shows SORBS reporting this address as an open relay (I'm not sure if this a common occurence??).
127.0.0.1 has been listed in SORBS since 2008, according to their database lookup tool, although I can't seem to verify that with a DNS lookup. I guess it maybe makes some sense since if your frontend MTAs (the ones which should be checking incoming connections against DNSBLs) are getting mail from 127.0.0.1 you might want to know about it? I use Spamhaus who seem to have more rigorous policies around what leads to IPs being listed. Also, I'd suggest that if 127.0.0.1 being listed in SORBS can break your mail system, it might be worth tweaking the configuration so that doesn't happen. In particular, connections from localhost probably shouldn't be subjected to a DNSBL lookup. Jasper _______________________________________________ NZNOG mailing list NZNOG(a)list.waikato.ac.nz http://list.waikato.ac.nz/mailman/listinfo/nznog ========================================================= This e-mail has been scanned for Viruses and Content and cleared by Mail Marshal