On Sun, Aug 31, 2025 at 11:05 AM Viktor Dukhovni via mailop <mailop@mailop.org> wrote: > > On Sun, Aug 31, 2025 at 03:43:56PM +0000, Slavko wrote: > > Dňa 31. augusta 2025 15:06:53 UTC používateľ Viktor Dukhovni via mailop > > <mailop@mailop.org> napísal: > > > > >IP space are PBL listed, they are rarely XBL or SBL listed. > > > > Wrong, XBL lists any exploited IP (or so), including the end > > users, and end user's IP are changing. AFAIK Spamhaus > > warns about this and i can confirm, that Spamhaus is right ;-) > > > > Try to guess what will happen when users get new IP which > > was infected before... > > XBL listings don't last very long, my impression is that they expire > shortly after the trigger behaviour ceases. But, sure, perhaps MSA > providers can be expected to be more tolerant, and/or the source ISP can > be expected to be more vigilant to keep their own IP space clean.
I've run into a version of this problem myself very recently, where I'll switch over to tethering via a particular mobile provider when I'm traveling or at a coffee shop, and suddenly my own tools won't let me in, because I reject connections from IPs on SBL or XBL. In my case, I'm clearly not the bad actor; it's just a random dynamic IP that some other idiot did something stupid from previously. I'm not exactly sure how fast XBL listings expire but I wonder if it is perhaps not as quick as has been suggested here. I'll start taking notes, if/when I run into this again. I'm sure I will. Cheers, Al -- Al Iverson // 312-725-0130 // Chicago http://www.spamresource.com // Deliverability http://www.aliverson.com // All about me https://xnnd.com/calendar // Book my calendar _______________________________________________ mailop mailing list mailop@mailop.org https://list.mailop.org/listinfo/mailop
