On Friday, June 23, 2006, 5:09:55 PM, jdow jdow wrote: > Jeff, it's probably quite good when the lookup is implemented on > spam traps and a small collection of servers. The domain registrars > who are honest might like it. It'd reduce the incentive and value > of domain kiting.
Presumably the list doesn't include kited domains, or it would be 35 million records long. :-( > However, doesn't a greylist perform much the same intent - a domain > that has not been heard from before is held off for a second chance > in half an hour to an hour. "Obviously" new domains would trigger > the greylist. If the greylisting is done on a per domain basis it > could be combined with the whois lookup. If the whois lookup did > not provide age data the message is blocked per greylisting. If it > provides age data indicating an old domain it's blocked per greylisting. > If it indicates a new domain it's blocked with a permanent error. > (If the whois source is not trustworthy it's also blocked with a > permanent error.) Michael gives some good possibilities and a discussion of the difference with greylisting. Note that whois can't really be done on an automated, high-frequency basis. Jeff C. -- Jeff Chan mailto:[EMAIL PROTECTED] http://www.surbl.org/
