Hello,
I noticed the following error message from SpamAssassin in all my received email headers:
I assume this is because mailinabox is forwarding all DNS queries to a public upstream DNS service? How have others fixed this - just ignore it, or change the configuration to use a local recursive DNS resolver like Unbound?
Thanks!
OK, I did some further investigation.
Looking at /etc/resolv.conf, there is only 1 entry for localhost (127.0.0.1). Port 53 (DNS) on localhost is used by named according to the lsof command, meaning mailinabox is using bind9 for DNS resolution. This brought me to the configuration files in /etc/bind, which show a basic bind9 configuration for recursive DNS lookups. Since there is no special DNS configuration in /etc/spamassassin/local.cf, this leads me to believe that Spamassassin is using the system’s default DNS server (which, as noted, is bind9).
So I don’t understand why the lookups to Validity are failing. Validity allows 10,000 anonymous lookups per month, and there’s no way my tiny mail server has anywhere near that volume of mail traffic. Any ideas?