http://bugzilla.spamassassin.org/show_bug.cgi?id=1375
[EMAIL PROTECTED] changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |mike-
| |[EMAIL PROTECTED]
------- Additional Comments From [EMAIL PROTECTED] 2004-01-15 09:47 -------
I'm mainly chiming in here to say that I think URI domain lookups would
be a very worthwhile idea. And also to say that I for one would gladly
take the extra 1-2 second hit per mail to lookup domain->ip and then
query e.g. SBL and SPEWS for that IP address. But then again, my mail
server load isn't very high, so maybe that's just me.
Case in point: 105 domains registered by Atriks, all pointing to the
same web server IP:
http://c0ffee.badf00d.org/atriksdomains-ip.txt
One thing to keep in mind when deciding the implementation is spammers
that randomize the first DNS component in the URI, e.g. atriks (again):
http://wwhxwxqwqwudxnwcqnrnkwdqcmcmd0627.openbsdmailservers.com/
A system that works with whole URIs wouldn't work here. One that tries
to figure out the actual user-registerable domain would perhaps work,
but that requires knowledge of how TLDs work, lest one suddenly blacklist
e.g. ".co.uk" or ".com.tw" or ".com.au" or ".tm.se" or "lastname.name",
etc etc..
A system that simply resolves the name and checks the resulting IP address
against IP-based RBLs would be fool proof.
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.
