Can not specify different DNSBLs for IPv4/IPv6
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
exim4 (Ubuntu) |
Invalid
|
Medium
|
Unassigned |
Bug Description
There is only one hook for checking DNSBLs in acl/30_
From exim spec 40.35:
40.35 DNS lists and IPv6
If Exim is asked to do a dnslist lookup for an IPv6 address, it inverts it nibble by nibble. For example, if the calling host’s IP address is 3ffe:ffff:
1.3.0.
Unfortunately, some of the DNS lists contain wildcard records, intended for IPv4, that interact badly with IPv6. For example, the DNS entry
*.3.some.
is probably intended to put the entire 3.0.0.0/8 IPv4 network on the list. Unfortunately, it also matches the entire 3::/4 IPv6 network.
You can exclude IPv6 addresses from DNS lookups by making use of a suitable condition condition, as in this example:
deny condition = ${if isip4{$
dnslists = some.list.example
Changed in exim4 (Ubuntu): | |
importance: | Undecided → Medium |
description: | updated |
From a cursory examination of 30_exim4- config_ check_rcpt I don't see evidence of support for running different hooks for ipv4 vs ipv6 addresses, so presumably this is still an issue?
If it is, it would be helpful to have a way to artificially reproduce the issue.