dnswl.org - Protect against false positives
-------------------------------------------

This set of files can be used to retrieve dnswl.org data via rsync
for the following formats:

* rbldnsd
* Postfix
* BIND (not yet included)

The scripts can be called individually (*-update-dnswl.pl) or
through the wrapper script dnswl.sh.

All scripts share a common Perl library (dnswl-lib.pl) and a common
configuration file (dnswl.conf). 

Installation
------------

1) Copy all files into a common directory (eg /opt/dnswl/). 

2) Have a look at dnswl.conf and adjust to your needs. For a first
run, you maybe want to disable PGP verification ($pgp_verify=0;) and
enable debugging ($debug=1;).

3) Run by changing to the directory and executing one of the Perl
scripts directly (without parameters or the fully qualified
filename of the configuration file as a parameter), eg

   cd /opt/dnswl && postfix-update-dnswl.pl
   
or

   cd /opt/dnswl && postfix-update-dnswl.pl /etc/dnswl.conf


Setting up regular updates
--------------------------

For easy operations, you can then set the LIBPATH, CONFIG and USER
variables in dnswl.sh and put "/path/to/dnswl.sh
[rbldnsd|postfix|bind]" in your system crontab. 

Enabling GnuPG / PGP verification
---------------------------------

If "$pgp_verify=1;" is set and the public key for the dnswl.org
batch jobs is not in the user's keyring, the scripts will try to
download the public key and insert it into the current user's
keyring. 

You may want to do this manually; the key can be found under
http://www.dnswl.org/security.shtml

$Id: INSTALL,v 1.1 2006/11/26 20:50:42 mleisi Exp $

# EOF