Negative ghostrider! We aren't getting the ip. We are taking the ip directly from the URL, not doing a reverse lookup. I haven't seen a legit email use an IP in a URL in ages. And even if it was legit, it would have to be listed in URIBL.
Again, no reverse lookups being done. Just using what is listed in the URL. --Chris > -----Original Message----- > From: Greg Allen [mailto:[EMAIL PROTECTED] > Sent: Thursday, August 11, 2005 4:59 PM > To: 'users@spamassassin.apache.org' > Subject: RE: Phishing IP listed in URIBL and SURBL, but not triggering > URI rules > > > This is a very, very dangerous road to go down. You would see a lot of > collateral damage by doing a URIBL by IP. A lot of domain > hosts these days > use shared IPs. I could host any number of legit websites on > one virtual > IP...and I do. I share IPs with any number of other websites at the web > hosting companies where I have websites. There is nothing > wrong with this > practice. It is common place on the Internet and is very cost > efective. I > don't want other people's spam baggage thank you. It would be > much better > to stick with URIBLs by name and let RBLs do the IP lookups like we > already do. > > > > > > > > Well, URIBL lists the phish and evil IPs. So is there any > future plas for > > looking up IPs in URLs? > > > > --Chris > > >
