![]() Nov 6 08:36:06 localhost named: REFUSED unexpected RCODE resolving 'rbldns9. Nov 6 08:36:06 localhost named: REFUSED unexpected RCODE resolving 'rbldns7. Nov 6 08:36:06 localhost named: REFUSED unexpected RCODE resolving 'rbldns11. Nov 6 08:36:06 localhost named: REFUSED unexpected RCODE resolving 'rbldns3. Nov 6 08:36:06 localhost named: REFUSED unexpected RCODE resolving 'rbldns6. Nov 6 08:36:06 localhost named: REFUSED unexpected RCODE resolving 'rbldns4. Nov 6 08:36:06 localhost spamd: (Not a HASH reference at /usr/share/ perl5/Mail/ SpamAssassin/ Plugin/ FromNameSpoof. Nov 6 08:36:06 localhost spamd: rules: failed to run USER_IN_ DKIM_WHITELIST test, skipping: Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: c.ns.northernto olemail. Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: e.ns.northernto olemail. Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: a.ns.northernto olemail. Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: d.ns.northernto olemail. Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: f.ns.northernto olemail. Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: b.ns.northernto olemail. Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: ns2.northerntoo l.com Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: ns3.northerntoo l.com Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: ns1.northerntoo l.com Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: b.ns.northernto ol.com Nov 6 08:36:06 localhost spamd: dns: new_dns_packet: domain is utf8 flagged: a.ns.northernto ol.com Nov 6 08:36:06 localhost spamd: spamd: processing message for chris:1000 Nov 6 08:36:06 localhost spamd: spamd: setuid to chris succeeded Nov 6 08:36:06 localhost spamd: spamd: connection from ::1 :60902 to port 783, fd 5 I also tested an email with spamassassin -D -t CVA.mbox the output is here: I installed each pkg individually verified the new version number "Apache SpamAssassin 3.4.2 fixes a local user code injection in the meta "A potential Remote Code Execution bug exists with the PDFInfo plugin in com/~ubuntu- security/ cve/2016/ CVE-2016- 1238.htmlĪccording to the link above it appears that Bionic is not affected by this. ![]() ![]() The vulnerability arises with certain unclosed tags in emails that cause markup to be handled incorrectly leading to scan timeouts." "A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2. With SHA-1 signatures in the near future. *** If you do not update to 3.4.2, you will be stuck at the last ruleset V3.3.2 forward, they will start failing SHA-1 validation for sa-update. While we produce rule updates with the focus on them working for any release from Specifically, we will stop producing SHA-1 signatures for rule updates. "There is one specific pressing reason to upgrade. Suggest that a 3.4.2 version of Spamassassin be released for 18.04LTS. Note - I'm also seeing plenty of lame server and EDNS errors.According to the release notes for Spamassassin 3.4.2 there have been significant bug fixes and changes made in the newer package. If you have full Internet connectivity, there's really no reason to be forwarding at all. I hope you're not trying to use authoritative nameservers as "forwarders" in the strict BIND sense. Nbc.com is not hosted on those nameservers: Oct 12 16:06:55 prod75-dns1 named: error (unexpected RCODE REFUSED) resolving 'nbc.com/A/IN': 205.173.93.213#53Įxploring this more, almost all domains I'm having problems with (as discovered through dig) is related to this forwarder: This has taken away the AAAA log activity but I still get the error: My research has lead me to disable IPv6 when starting the named service with "named -4" as it could be related to IPv6 broken connectivity (of which we been actively deploying and testing). ![]() I'm getting what appears to be a common "error (unexpected RCODE REFUSED) resolving" error. For my root hint, standard configuration: I only define internal forwarders for internal zones as needed.
0 Comments
Leave a Reply. |