Warren Togami wrote:
http://ruleqa.spamassassin.org/20091006-r822170-n/T_CN_URL/detail
A very sizeable amount of spam (currently 50%) contains .cn domains that
were registered very recently. They keep registering new domains in
order to keep ahead of the URIBL's.
I have an account here
http://ruleqa.spamassassin.org/20091006-r822170-n/T_CN_URL/detail
A very sizeable amount of spam (currently 50%) contains .cn domains that
were registered very recently. They keep registering new domains in
order to keep ahead of the URIBL's.
On 10/7/2009 5:00 PM, Warren Togami wrote:
It seems then the only way to feed a URIBL fresh .cn domains would be a
spam trap. This proposed URIBL would be extremely easy to build on the
infrastructure of existing trap-based DNSBL's like PSBL, HOSTKARMA or
SEM. My own volume of spam is too
Hi Warren!
It seems then the only way to feed a URIBL fresh .cn domains would be a
spam trap. This proposed URIBL would be extremely easy to build on the
infrastructure of existing trap-based DNSBL's like PSBL, HOSTKARMA or SEM.
My own volume of spam is too small to do this.
you haven't
On 10/07/2009 11:27 AM, Raymond Dijkxhoorn wrote:
We are working on getting .CN zone access. Thats the only way to speed
things up. The only challenging part is to get a copy of the CN zone
just like we get copy's of other ccTLD/gTLD's.
OK, I was under the impression that it was impossible to
Warren Togami wrote:
Opinions of this proposal?
I would love to have a listing of recently registered .cn domains but
until the TLD operator starts working with us that just isn't going to
happen.
Trying to perform a whois lookup on every domain is painfully slow.
Once you get a high enough
Blaine Fleming wrote:
I know my users never see .cn domains in their inbox
and if I didn't run a blacklist I wouldn't either.
Which brings up an interesting idea. I wonder how many legit non-spam
.cn domains exist? Surely it is a fraction of a percent of the # of .cn
domains used for spam
Blaine Fleming wrote:
Warren Togami wrote:
Opinions of this proposal?
I would love to have a listing of recently registered .cn domains but
until the TLD operator starts working with us that just isn't going to
happen.
Trying to perform a whois lookup on every domain is painfully
On Wed, 7 Oct 2009, Terry Carmen wrote:
Instead of blacklisting new domains (which is apparently difficult to
do), why not blacklist all .cn domains (or simply all domains) newer
than xxx days?
If they're older than xxx days and not yet on another blacklist for
sending actual spam, return
Spam from .cn domains can be mitigated with the right rules and querying
multiple lists. I know my users never see .cn domains in their inbox
and if I didn't run a blacklist I wouldn't either.
Indeed, spam with .cn URIs really doesn't appear to be a problem at all.
They are well covered by
On Wed, 2009-10-07 at 14:01 -0400, Rob McEwen wrote:
I might be interested in maintaining such a freely available
list--accessible via rsync at no charge--if someone else would come up
with the SA rule or plugin.
I'd be interested in giving this a shot, as a proof-of-concept. Any
details and
John Hardin wrote:
On Wed, 7 Oct 2009, Terry Carmen wrote:
Instead of blacklisting new domains (which is apparently difficult to
do), why not blacklist all .cn domains (or simply all domains) newer
than xxx days?
If they're older than xxx days and not yet on another blacklist for
sending
Terry Carmen wrote:
Instead of blacklisting new domains (which is apparently difficult to
do), why not blacklist all .cn domains (or simply all domains) newer
than xxx days?
If they're older than xxx days and not yet on another blacklist for
sending actual spam, return a neutral response.
On Wed, 7 Oct 2009, Terry Carmen wrote:
John Hardin wrote:
On Wed, 7 Oct 2009, Terry Carmen wrote:
Instead of blacklisting new domains (which is apparently difficult to
do), why not blacklist all .cn domains (or simply all domains) newer
than xxx days?
If they're older than xxx
John Hardin wrote:
The other part of the problem is determining the age of a domain. The
only way to do that absent a registrar feed is to do a whois query,
which may or may not return the data you need, and which is considered
abusive when automated and done often.
It would be nice if
On 10/07/2009 03:29 PM, Jason Bertoch wrote:
John Hardin wrote:
The other part of the problem is determining the age of a domain. The
only way to do that absent a registrar feed is to do a whois query,
which may or may not return the data you need, and which is considered
abusive when
On 10/7/2009 8:01 PM, Rob McEwen wrote:
Blaine Fleming wrote:
I know my users never see .cn domains in their inbox
and if I didn't run a blacklist I wouldn't either.
Which brings up an interesting idea. I wonder how many legit non-spam
..cn domains exist? Surely it is a fraction of a percent
Hi!
The other part of the problem is determining the age of a domain. The
only way to do that absent a registrar feed is to do a whois query,
which may or may not return the data you need, and which is considered
abusive when automated and done often.
It would be nice if Google could help
Hi!
How does that simplify the problem? The difficulty is in getting data about
when a domain was created.
I thought the problem was in getting data for recently created domains, not
all domains.
If it's a problem with all domains, this won't help at all.
If you rely on whois data, and
19 matches
Mail list logo
