dnsbl

package

v0.0.11 Latest Latest Go to latest Published: Apr 30, 2024 License: MIT Imports: 11 Imported by: 3

Details

Valid go.mod file

The Go module system was introduced in Go 1.11 and is the official dependency management solution for Go.
Redistributable license

Redistributable licenses place minimal restrictions on how software can be used, modified, and redistributed.
Tagged version

Modules with tagged versions give importers more predictable builds.
Stable version

When a project reaches major version v1 it is considered stable.
Learn more about best practices

Repository

github.com/mjl-/mox

Links

Open Source Insights

Documentation ¶

Overview ¶

Package dnsbl implements DNS block lists (RFC 5782), for checking incoming messages from sources without reputation.

A DNS block list contains IP addresses that should be blocked. The DNSBL is queried using DNS "A" lookups. The DNSBL starts at a "zone", e.g. "dnsbl.example". To look up whether an IP address is listed, a DNS name is composed: For 10.11.12.13, that name would be "13.12.11.10.dnsbl.example". If the lookup returns "record does not exist", the IP is not listed. If an IP address is returned, the IP is listed. If an IP is listed, an additional TXT lookup is done for more information about the block. IPv6 addresses are also looked up with an DNS "A" lookup of a name similar to an IPv4 address, but with 4-bit hexadecimal dot-separated characters, in reverse.

The health of a DNSBL "zone" can be check through a lookup of 127.0.0.1 (must not be present) and 127.0.0.2 (must be present).

Index ¶

Variables
func CheckHealth(ctx context.Context, elog *slog.Logger, resolver dns.Resolver, zone dns.Domain) (rerr error)
type Status
- func Lookup(ctx context.Context, elog *slog.Logger, resolver dns.Resolver, zone dns.Domain, ...) (rstatus Status, rexplanation string, rerr error)

Examples ¶

Lookup

Constants ¶

This section is empty.

Variables ¶

View Source

var ErrDNS = errors.New("dnsbl: dns error") // Temporary error.

View Source

var (
	MetricLookup stub.HistogramVec = stub.HistogramVecIgnore{}
)

Functions ¶

func CheckHealth ¶

func CheckHealth(ctx context.Context, elog *slog.Logger, resolver dns.Resolver, zone dns.Domain) (rerr error)

CheckHealth checks whether the DNSBL "zone" is operating correctly by querying for 127.0.0.2 (must be present) and 127.0.0.1 (must not be present). Users of a DNSBL should periodically check if the DNSBL is still operating properly. For temporary errors, ErrDNS is returned.

Types ¶

type Status ¶

type Status string

Status is the result of a DNSBL lookup.

var (
	StatusTemperr Status = "temperror" // Temporary failure.
	StatusPass    Status = "pass"      // Not present in block list.
	StatusFail    Status = "fail"      // Present in block list.
)

func Lookup ¶

func Lookup(ctx context.Context, elog *slog.Logger, resolver dns.Resolver, zone dns.Domain, ip net.IP) (rstatus Status, rexplanation string, rerr error)

Lookup checks if "ip" occurs in the DNS block list "zone" (e.g. dnsbl.example.org).

Example ¶

package main

import (
	"context"
	"log"
	"log/slog"
	"net"

	"github.com/mjl-/mox/dns"
	"github.com/mjl-/mox/dnsbl"
)

func main() {
	ctx := context.Background()
	resolver := dns.StrictResolver{}

	// Lookup if ip 127.0.0.2 is in spamhaus blocklist at zone sbl.spamhaus.org.
	status, explanation, err := dnsbl.Lookup(ctx, slog.Default(), resolver, dns.Domain{ASCII: "sbl.spamhaus.org"}, net.ParseIP("127.0.0.2"))
	if err != nil {
		log.Fatalf("dnsbl lookup: %v", err)
	}
	switch status {
	case dnsbl.StatusTemperr:
		log.Printf("dnsbl lookup, temporary dns error: %v", err)
	case dnsbl.StatusPass:
		log.Printf("dnsbl lookup, ip not listed")
	case dnsbl.StatusFail:
		log.Printf("dnsbl lookup, ip listed: %s", explanation)
	}
}

Output:

Source Files ¶

View all Source files

dnsbl.go

?	: This menu
/	: Search site
f or F	: Jump to
y or Y	: Canonical URL