[rbldnsd] how to make public (DNS)RBL?

Roland Gaspar rbl_mailing_list at me.com
Thu May 14 23:13:57 MSD 2009 

I'll offer one more comment to the thread from a position of actual  
experience.

I run multiple spamhaus mirrors and had to take *considerable*  
obfuscation steps to prevent the machines from being discovered and  
DDoS'd.

consider this a *real* and serious point to ponder. If your list is  
any good, and it grows in popularity, so will your effective target  
value increase proportionally.

-Roland

On 13-May-09, at 9:31 PM, Chris. wrote:

> Hello Gabrielle, and thank you for your reply...
>
> On Wed, 13 May 2009 19:54:56 -0400, Gabrielle Singleton wrote...
>
>>
>> On May 13, 2009, at 3:41 PM, Chris. wrote:
>>
>>> So, here's the deal; I've been working on a "trap" system for about
>>> a year. I can now say
>>> it works better than anything else available on the net - so why not
>>> share the benefits
>>> with all?
>>
>> Hi Chris:
>>
>> My first thought is to wonder whether you have considered that your
>> trap system might work better for you than anything else available
>> because it is trapping your spam.  Others may benefit more if you
>> share your trap method (scripts on sourceforge, etc) rather than
>> publish the IPs, and this would involve a lot less set-up and
>> support.  I am not sure how many users you are dealing with but  
>> here a
>> subset of users get targeted from specific source IPs (snowshoe spam)
>> that take a long time to be picked up by the big RBLs.  This leads to
>> me to wonder to what degree there is spam-source-IP to target-domain
>> specificity.  The IPs you trap at your domain may not apply to others
>> or the timing could be off.
>>
>> I could be completely off-base, maybe you have dozen or hundreds of
>> traps across the internet, and all great ideas start somewhere, I was
>> just wondering if you had considered this.
>>
>> Gabrielle
>
> All good points. I've been RP for a good number of /24's, and /16's  
> for
> quite a few years. I also own (to the extent one /can/ own) a couple
> hundred domains, and all the hosts that typically go along with them.
> This has helped to get a fairly good "taste" of what one might expect.
> But indeed, getting others involved would be even better. part of my
> reason for wanting to make it a public list. This would permit me to
> experience environments that I might not yet have had a chance to.
> The (combined) list currently holds more than a billion IP's. It took
> less than 7 months to reach the 1B mark. I'm pretty sure I receive
> more than the average amount of opportunity to get spam, or maybe the
> system is better that I think. I won't be able to fully appreciate  
> that
> until I share the list. :)
>
> Thanks again for taking the time to respond.
>
> --Chris
>
> P.S. I see you hail out of umich. They still maintain the Macintosh  
> archive?
>
> _________________________________________________________________
>    http://fastmail.ca/ - Fast Secure Web Email for Canadians
> _______________________________________________
> rbldnsd mailing list
> rbldnsd at corpit.ru
> http://www.corpit.ru/mailman/listinfo/rbldnsd

More information about the rbldnsd mailing list