ietf-asrg
[Top] [All Lists]

Re: [Asrg] Handling of abusive DNSBL/WL clients

2011-12-22 15:25:23
On Thu, Dec 22, 2011 at 5:06 PM, Chris Lewis 
<clewis+ietf(_at_)mustelids(_dot_)ca> wrote:

The DNSBL shutdown process would _also_ be perfectly appropriate for
blocking abusive DNS queries, _without_ listing the world, _and_ by its very
nature shedding the abusive queries.

Note that the case referred to by the OP is not about shutting down a
DNSxL, but about signaling to client applications (and
resolvers/forwarders) that their use is considered not acceptable by
the operator of the service.

Unfortunately, a straightforward REFUSED rcode results in a three-fold
increase in queries due to retries in most cases. A dedicated return
value which would cause at least certain applications to at least
temporarily suspend queries is helpful.

-- Matthias
_______________________________________________
Asrg mailing list
Asrg(_at_)irtf(_dot_)org
http://www.irtf.org/mailman/listinfo/asrg

<Prev in Thread] Current Thread [Next in Thread>