spamassassin-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Dianne Skoll <>
Subject Re: TTL on DNS records (was Re: understanding HELO_DYNAMIC_IPADDR)
Date Mon, 16 May 2016 11:10:19 GMT
On Mon, 16 May 2016 09:12:54 +0200
Matus UHLAR - fantomas <> wrote:

> short ttl's are more likely on abusers' DNS. good for refusing
> delisting.

I would love to see data on the correlation.  I think it's pretty
mild.  A few random tests on consumer cable IPs reveals TTLs for the
reverse DNS ranging from a couple of hours to a day.  For example, => has a TTL of two
hours while => has a TTL
of a day.

The reverse-DNS of our server,, which we do not
control has a TTL of only one hour: =>

but the A record going the other way has a TTL of 86400.



View raw message