Re: Bug#503395: ITP: libapache2-mod-spamhaus -- Apache module that use DNSBL to deny access to a known bad IP address

To: debian-devel@lists.debian.org
Subject: Re: Bug#503395: ITP: libapache2-mod-spamhaus -- Apache module that use DNSBL to deny access to a known bad IP address
From: Robert Edmonds <edmonds@debian.org>
Date: Sat, 25 Oct 2008 20:53:40 +0000 (UTC)
Message-id: <[🔎] ge010k$rpt$1@ger.gmane.org>
References: <20081025153520.13781.81200.reportbug__5885.89948970384$1224949290$gmane$org@localhost> <[🔎] gdvsi5$ecc$1@ger.gmane.org> <[🔎] 20081025194010.GB2368@charite.de>

On 2008-10-25, Ralf Hildebrandt <Ralf.Hildebrandt@charite.de> wrote:
> Or zen.spamhaus.org (which is actually a BIT more, but the recommended
> list)

zen includes PBL, which certainly shouldn't be used for denying access
to http service.

i'm unsure why this program is named mod_spamhaus; it appears to be a
DNSBL access control filter for apache that can only query one DNSBL
zone.

i also notice that mod_spamhaus's DNSBL lookup routine only checks for
the presence or absence of a host record, rather than checking like a
sensible DNSBL client that the response lies in the 127/8 range.

-- 
Robert Edmonds
edmonds@debian.org

Reply to:

References:
- Re: Bug#503395: ITP: libapache2-mod-spamhaus -- Apache module that use DNSBL to deny access to a known bad IP address
  - From: Robert Edmonds <edmonds@debian.org>
- Re: Bug#503395: ITP: libapache2-mod-spamhaus -- Apache module that use DNSBL to deny access to a known bad IP address
  - From: Ralf Hildebrandt <Ralf.Hildebrandt@charite.de>

Prev by Date: can a kernel in main depend on firmware in non-free to work?
Next by Date: Re: can a kernel in main depend on firmware in non-free to work?
Previous by thread: Re: Bug#503395: ITP: libapache2-mod-spamhaus -- Apache module that use DNSBL to deny access to a known bad IP address
Next by thread: Bug#503469: ITP: nmapsi4 -- interface to nmap, the Network scanner
Index(es):
- Date
- Thread