Am 18.02.26 um 18:33 schrieb Michael Peddemors via mailop:
But your issue is a little simpler.. report the sending IP address to your favourite RBL or malware service.. with the sample.. However, these spammer who use typosquatting, or recently expired domains, usually have such a 'brief' run before being taken down or blocked.. often by the time you report it, they have already stopped..
That's where a real-time p2p reputation network could possibly help - it's much faster than RBLs could ever be. I'm working on such a thing that would allow participants to report domains, (hashed) e-mail addresses, IP ranges as belonging to some category, such as "spammer", "exploited", "freemailer", "cloud" with possibly subcategories and to use local rule sets to make delivery or rejection decisions appropriate for their users.
Not yet generally usable, but I'm using part of it to block off a significant amount of spam, even some that is hard to handle otherwise (e.g. urls pointing to link shorteners pointing to target urls in known spammer-friendly hosting space).
Cheers, Hans-Martin
_______________________________________________ mailop mailing list [email protected] https://list.mailop.org/listinfo/mailop
