Yes, but as it was a from a user in an internet cafe on a mexican DSL provider's link, chances are there are more listed ip's, and the when the caf� boots up tommorrow equally they'll get a different address. (it's prodigy-infinitum - they operate on mostly Dynamic IP DSL) I've seen a good few listed recently.
That's not surprising. If there's a vulnerable proxy in that network, spammers will keep finding it, and keep abusing it, even as it moves around to different IPs.
Should this be considered a bug?
I'd argue it's not a bug, but it is definitely collateral damage, which isn't a good thing.
- a score of nearly 6 just for using a net caf�?
Correction.. a score of nearly 6 for using a net cafe which is part of an IP network block known to contain open proxies which have been targeted and abused to relay spam, and happens to currently be located at an IP address which had one of these verified proxies.
how could i lower the score here?
Dynamic DSL blocks containing open proxies are a problem. Eventually the entire subnet gets blocked until the ISP tracks down which of their customers has an open proxy and gets them to fix it, or blocks inbound proxy requests altogether.
However, from a spam fighting perspective, you KNOW for a fact that a relay existed at that location, and keeps jumping IPs in the same block. You also know that eventually the offending IP will move back to the same address, since it's allocation is going to be semi-random, but from a fixed-size pool of IPs. Do you merely ignore these IPs, or do you accept the collateral damage of listing this IP, even though that the relay may or may not be there today?
Unfortunately, only the ISP itself is the only is capable of dealing with this problem. It needs to track down which of it's customers is the relay, and then inform the RBLs that they've fixed the problem. End user's can't really do much.
The other alternative is to get a static IP service. Technically speaking, this is the kind of service a net cafe should have anyway, but it's not always available at reasonable cost. As an amusing twist, the ISP's job would be a lot easier if the net cafe was static, that way they'd be able to quickly identify complaints as being related to the net cafe or not.
