ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Asrg] 6. Proposals - DNSRBLs

2003-08-29 16:55:37
from [Yakov Shafranovich] [Permanent Link]
As somebody has mentioned before, having local copies of a DNSRBL's database might something that is needed to counteract this problem. The db can be posted to NANAE for example. 

At 12:22 AM 8/29/2003, Hector Santos wrote:

I hope the FBI is on the case.   This is the worst 2-3 weeks I have ever
seen!   We are not a "RBL" but our software has it been in and we have over
60,000 customers world wide!  We are getting hit hard and many customers are
reporting the same!    I just installed a honeypot to begin complete data
collection.  It is REALLY BAD out there!

With that said, I personally always view the RBL to be a double-edge sword.
While it help stop spammers, at the same time, the database was an open
source for spammers to easily find open relays and proxies.  In other words,
if I wanted to become a spammer tomorrow, all I need to do is get the RBL
database (which is downloadable at some sites) and easily find thousands of
relays/proxies with little or no effort on my part.

I have discussed this some of the spews people.  We agreed that is an
problem, however, the hope is that as more and more systems begin to use
RBL, then the spammers having the database isn't so much a problem.

I agree with that idea and quite possibly with the recent news more of the
"big boys" including Microsoft, AOL, YAHOO, etc to begin using RBL systems,
the spammers felt it was time to go on the offensive by attacking the sites
NOW.   They have tried to stop them legally and that has failed.

--
Hector Santos
WINSERVER "Wildcat! Interactive Net Server"
http://www.winserver.com

----- Original Message -----
From: "Yakov Shafranovich" <research(_at_)solidmatrix(_dot_)com>
To: <asrg(_at_)ietf(_dot_)org>
Sent: Thursday, August 28, 2003 5:30 PM
Subject: [Asrg] 6. Proposals - DNSRBLs


> Just to follow up on the previous post regarding the shutdown of
OsiruSoft,
> the Boston Globe is reporting
>
(http://www.boston.com/news/nation/articles/2003/08/28/saboteurs_hit_spams_b
lockers/)
> that a distributed DDOS attack that targeted OsiruSoft and SPEWS, is
> targeting many other black-lists as well.
>
> Yakov
>
>
> _______________________________________________
> Asrg mailing list
> Asrg(_at_)ietf(_dot_)org
> https://www1.ietf.org/mailman/listinfo/asrg
>



_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg



_______________________________________________
Asrg mailing list
Asrg(_at_)ietf(_dot_)org
https://www1.ietf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  Re: [Asrg] 4. Consent Framework - General, Andrew Akehurst
Next by Date:  Re: 7. BCP - Default Settings (was Re: [Asrg] 0. - General - Consent and SoBig), John Kodis
Previous by Thread:  Re: [Asrg] 6. Proposals - DNSRBLs, Esa Laitinen
Next by Thread:  7. Best Current Practices (was Re: [Asrg] 0. General - Administrative - for M. Wild), Yakov Shafranovich
Indexes:  [Date] [Thread] [Top] [All Lists]