On Mon, Jul 19, 2010 at 01:39:32PM -0700, John Hardin wrote:
I'll say it again, Marc: you'd get better response from large sites if
you offered source code for a small SMTP daemon that did the connection
analysis you want and sent to you just the offending IP addresses via an
auditable channel (e.g. a plain HTTP PUT), and asked people to install
that somewhere in their public netspace.
Rather than something bespoke over HTTP, I'd suggest instead using
https://datatracker.ietf.org/doc/draft-dskoll-reputation-reporting/
It's a vendor-agnostic protocol for submitting reputation data (though,
of course, we at RP are probably the only ones using it thus far).
Further details (including proof-of-concept client code) and the mailing
list for the protocol design are available at
http://www.mimedefang.org/reputation
We haven't (yet) made public a server implementation for the protocol,
but given sufficient interest and support, that could happen.
Cheers,
Dave
--
Dave O'Neill <d...@roaringpenguin.com> Roaring Penguin Software Inc.
+1 (613) 231-6599 http://www.roaringpenguin.com/
For CanIt technical support, please mail: supp...@roaringpenguin.com
