You are viewing a plain text version of this content. The canonical link for it is here.
Posted to users@spamassassin.apache.org by Emin Akbulut <em...@gmail.com> on 2017/02/14 13:21:04 UTC
URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked.
Hi
URIBL checks are blocked. I think bec. of so many queries. I'm advised to
set up conditional forwarder on Windows DNS Server.
I've added uribl.com as DNS zone and 54.149.125.143 as IP.
SA still tags the messages.
How can I set the DNS conditional forwarders properly?
Re: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked.
Posted by Benny Pedersen <me...@junc.eu>.
Emin Akbulut skrev den 2017-02-14 14:21:
> How can I set the DNS conditional forwarders properly?
setup spamasassin to use 127.0.0.1 as dns server, not any remote ips
i dont know anything on how windows works :=)
Re: Fwd: Fwd: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL
was blocked.
Posted by Bowie Bailey <Bo...@BUC.com>.
On 2/14/2017 10:01 AM, Emin Akbulut wrote:
>
> ---------- Forwarded message ----------
> From: *Bowie Bailey* <Bowie_Bailey@buc.com
> <ma...@buc.com>>
> Date: Tue, Feb 14, 2017 at 5:44 PM
> Subject: Re: Fwd: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to
> URIBL was blocked.
> To: users@spamassassin.apache.org
> <ma...@spamassassin.apache.org>
>
> That page is suggesting that you find the authoritative server for
> blacklist domains and force those domain queries to go to those
> servers. This will fix the problem, but it is a bit fragile since
> your lookups will start failing if those domains ever change their
> DNS setup.
> A better idea is to have your server stop forwarding altogether.
> Let your DNS server query the root servers and figure out the
> authoritative DNS servers for the domains itself. This is how DNS
> servers were designed to work and there are few reasons not to do
> it this way. Unfortunately, I have no idea where those settings
> are in the Windows DNS server.
>
>
> That was the problem. I couldn't find the correct IP addresses. That's
> why I asked here how to configure conditional forwarders correctly, I
> mean IP addresses for uribl.com <http://uribl.com>, etc.
The page you referenced actually showed how to do that.
C:\> nslookup -querytype=ns uribl.com
....
uribl.com nameserver = v.uribl.net
uribl.com nameserver = o.icudp.com
uribl.com nameserver = c.sarules.net
uribl.com nameserver = p.icudp.net
c.sarules.net internet address = 52.9.94.53
o.icudp.com internet address = 54.149.125.143
p.icudp.net internet address = 94.228.131.217
v.uribl.net internet address = 52.71.102.73
The IP addresses listed are all nameservers for uribl.com.
> Now my DNS server runs like a DNS server, uses root DNS servers to
> resolve names.
A much better idea.
> fbb
> I think I should "subscibe" to uribl's paid system if any.
You don't need to unless you continue to get blocked. Or if you just
want to support them.
Before you think about paying, make absolutely sure that you are
querying them directly. The paid service still won't work (afaik) if
you are using forwarding.
--
Bowie
Fwd: Fwd: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked.
Posted by Emin Akbulut <em...@gmail.com>.
> ---------- Forwarded message ----------
> From: Bowie Bailey <Bo...@buc.com>
> Date: Tue, Feb 14, 2017 at 5:44 PM
> Subject: Re: Fwd: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL
> was blocked.
> To: users@spamassassin.apache.org
>
> That page is suggesting that you find the authoritative server for
> blacklist domains and force those domain queries to go to those servers.
> This will fix the problem, but it is a bit fragile since your lookups will
> start failing if those domains ever change their DNS setup.
> A better idea is to have your server stop forwarding altogether. Let your
> DNS server query the root servers and figure out the authoritative DNS
> servers for the domains itself. This is how DNS servers were designed to
> work and there are few reasons not to do it this way. Unfortunately, I
> have no idea where those settings are in the Windows DNS server.
That was the problem. I couldn't find the correct IP addresses. That's why
I asked here how to configure conditional forwarders correctly, I mean IP
addresses for uribl.com, etc.
Now my DNS server runs like a DNS server, uses root DNS servers to resolve
names.
I think I should "subscibe" to uribl's paid system if any.
Re: Fwd: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked.
Posted by Bowie Bailey <Bo...@BUC.com>.
On 2/14/2017 9:27 AM, Emin Akbulut wrote:
> I'm confused a bit. Should I use forwarders or not?
> I was trying to follow that guide:
>
> ---------------------------------
>
> As your issue with UTIBL_BLOCKED is a well-known one
>
> I would like to point you the FAQ section of our homepage:
>
> http://www.jam-software.com/spamassassin_in_a_box/online_manual/EN/configuredns.html
> <http://www.jam-software.com/spamassassin_in_a_box/online_manual/EN/configuredns.html>
>
> Here you will find detailed information on how to configure
>
> a Microsoft Windows DNS server to do a conditional forwarding.
>
That page is a bit confusing since it shows screenshots of the DNS query
results, but never actually shows a screenshot of the setting you are
supposed to be changing.
That page is suggesting that you find the authoritative server for
blacklist domains and force those domain queries to go to those
servers. This will fix the problem, but it is a bit fragile since your
lookups will start failing if those domains ever change their DNS setup.
A better idea is to have your server stop forwarding altogether. Let
your DNS server query the root servers and figure out the authoritative
DNS servers for the domains itself. This is how DNS servers were
designed to work and there are few reasons not to do it this way.
Unfortunately, I have no idea where those settings are in the Windows
DNS server.
--
Bowie
Re: Fwd: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked.
Posted by Benny Pedersen <me...@junc.eu>.
Emin Akbulut skrev den 2017-02-14 15:27:
> I'm confused a bit. Should I use forwarders or not?
no stop any forward dns
> I was trying to follow that guide:
i do not care of windows problems here
use spamasassin docs on how to use specific ip as dns server, but not
global, only for spamassassin you should stay at 127.0.0.1, you windows
problemativ dns server should do the rest for you, if it still not
working ask where thay know more about windows then here
Fwd: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked.
Posted by Emin Akbulut <em...@gmail.com>.
I'm confused a bit. Should I use forwarders or not?
I was trying to follow that guide:
---------------------------------
As your issue with UTIBL_BLOCKED is a well-known one
>
> I would like to point you the FAQ section of our homepage:
>
>
>
> http://www.jam-software.com/spamassassin_in_a_box/online_
> manual/EN/configuredns.html
>
>
>
> Here you will find detailed information on how to configure
>
> a Microsoft Windows DNS server to do a conditional forwarding.
>
---------------------------------
Re: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked.
Posted by Benny Pedersen <me...@junc.eu>.
Emin Akbulut skrev den 2017-02-14 16:03:
> It's Gmail. When I hit the reply button, it only sends the last
> poster, -in this reply, it's you and I manually added users@-
gmail ignores List-* headers, leading to much more problems then users
using gmail
if you need more support on there broken gmail ask them
Re: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked.
Posted by Emin Akbulut <em...@gmail.com>.
It's Gmail. When I hit the reply button, it only sends the last poster,
-in this reply, it's you and I manually added users@-
On Tue, Feb 14, 2017 at 5:57 PM, Reindl Harald <h....@thelounge.net>
wrote:
> what is wrong with your mailprogram that it appearently is lacking a
> "reply" button and so you seem to need forward messages which breaks
> threading in any sane mail-client and list-archive?
>
> Am 14.02.2017 um 15:43 schrieb Emin Akbulut:
>
>>
>> ---------- Forwarded message ----------
>> From: *David Jones* <djones@ena.com <ma...@ena.com>>
>> Date: Tue, Feb 14, 2017 at 5:33 PM
>> Subject: Re: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL
>> was blocked.
>> To: "users@spamassassin.apache.org
>> <ma...@spamassassin.apache.org>"
>> <users@spamassassin.apache.org <mailto:users@spamassassin.apache.org
>> >>
>>
>>
>> Note that if your mail volume is high enough, you may
>> still hit their free usage limit even after doing this.
>> Dave
>>
>>
>>
>> I've got plenty of inboxes. I've read SpamAssassin's info page about the
>> block and it says:
>>
>> Resolving the block might be as simple as using your
>> own non-forwarding
>> <https://wiki.apache.org/spamassassin/CachingNameserver#Non-
>> forwarding> caching
>> nameserver
>> <https://wiki.apache.org/spamassassin/CachingNameserver> to avoid
>> being lumped together with other users queries; setting up your own
>> mirror of the DNS-blocklist; or paying to use the blocklist. The
>> choice is up to the DNS-Blocklist administrator.
>>
>>
>>
>> Then I found myself at configuring DNS cond. forwarder because of an
>> incorrect advise
>>
>
Fwd: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked.
Posted by Emin Akbulut <em...@gmail.com>.
> ---------- Forwarded message ----------
> From: David Jones <dj...@ena.com>
> Date: Tue, Feb 14, 2017 at 5:33 PM
> Subject: Re: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
> blocked.
> To: "users@spamassassin.apache.org" <us...@spamassassin.apache.org>
>
>
> Note that if your mail volume is high enough, you may
> still hit their free usage limit even after doing this.
> Dave
I've got plenty of inboxes. I've read SpamAssassin's info page about the
block and it says:
Resolving the block might be as simple as using your own non-forwarding
> <https://wiki.apache.org/spamassassin/CachingNameserver#Non-forwarding> caching
> nameserver <https://wiki.apache.org/spamassassin/CachingNameserver> to
> avoid being lumped together with other users queries; setting up your own
> mirror of the DNS-blocklist; or paying to use the blocklist. The choice is
> up to the DNS-Blocklist administrator.
>
Then I found myself at configuring DNS cond. forwarder because of an
incorrect advise.
Re: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked.
Posted by David Jones <dj...@ena.com>.
>From: RW <rw...@googlemail.com>
>Sent: Tuesday, February 14, 2017 7:51 AM
>To: users@spamassassin.apache.org
>Subject: Re: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was blocked.
>On Tue, 14 Feb 2017 16:21:04 +0300
>Emin Akbulut wrote:
>> Hi
>>
>> URIBL checks are blocked. I think bec. of so many queries. I'm
>> advised to set up conditional forwarder on Windows DNS Server.>
>If you mean that you should *stop* forwarding this traffic than that
>is correct. You need to be doing your own look-ups to the
>whitelist/blacklist servers from your own IP address, forwarding to a
>shared server is what causes the problem.
This is a common problem and has been discussed on this list
many times before. I wish SpamAssassin had a better way to
handle this rule hit and explaining to the server admin but I
don't think this is possible.
Basically you need to point to a DNS server that you manage
or know for sure that it's not forwarding to another DNS server.
It's not required to have a local DNS server on your SA box but
it's the best way to know for sure that it's doing full recursive
lookups, not forwarding to other DNS servers that will
consolidate your queries with others pushing you over the
free usage limits and thus hitting this rule.
Note that if your mail volume is high enough, you may
still hit their free usage limit even after doing this.
Dave
Re: URIBL_BLOCKED ADMINISTRATOR NOTICE: The query to URIBL was
blocked.
Posted by RW <rw...@googlemail.com>.
On Tue, 14 Feb 2017 16:21:04 +0300
Emin Akbulut wrote:
> Hi
>
> URIBL checks are blocked. I think bec. of so many queries. I'm
> advised to set up conditional forwarder on Windows DNS Server.
If you mean that you should *stop* forwarding this traffic than that
is correct. You need to be doing your own look-ups to the
whitelist/blacklist servers from your own IP address, forwarding to a
shared server is what causes the problem.
> How can I set the DNS conditional forwarders properly?
This is a question about Windows.