ietf-asrg
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [Asrg] RFC 6471 and "listing the Internet" as a punishment

2012-01-24 09:19:13
from [Emanuele Balla (aka Skull)] [Permanent Link] 
On 1/24/12 4:07 PM, Martijn Grooten wrote:

It was nice to see the RFC being published. Good work.

Then I came across this:

http://blog.vamsoft.com/2012/01/24/ub-black-uribl-com-url-blacklist-started-to-block-everything/

 (Vamsoft ORF is a spam-filter.) Basically uribl.com was returning
127.0.0.1 to _all_ queries from nameservers that are sending high
volumes (presumably without paying for it) as some kind of
punishment. http://uribl.com/ confirms that.

Now, as Vamsoft mentions, it is not a good idea to use third-party
nameservers on a server you're making DNS requests from. (Although,
unlike openDNS, Google's nameservers do return NXDOMAIN when they
can't resolve a domain.) Moreover, it does seem Google's nameservers
are now getting REFUSED as a response to any uribl.com request. I was
just wondering whether the RFC says anything about this kind of
behaviour ('listing' everything as a punishment). To my reading it
doesn't.

Martijn.


In truth there's
in point 3.3:

«  Note: In Section 3.4, it is noted that some DNSBLs have shut down in
   such a way to list all of the Internet.  Further, in Section 3.5,
   DNSBL operators MUST NOT list 127.0.0.1.  Therefore, a positive
   listing for 127.0.0.1 SHOULD indicate that the DNSBL has started
   listing the world and is non-functional. »

and again, in point 3.5:

«  A functioning DNSBL MUST NOT list 127.0.0.1.  There are a number of
   mail server implementations that do not cope with this well, and many
   will use a positive response for 127.0.0.1 as an indication that the
   DNSBL is shut down and listing the entire Internet.»


That is not clearly against "listing everything as a punishment", but
means uribl.com is technically "non-functional"... ;-)


-- 
Paranoia is a disease unto itself. And may I add: the person standing
next to you may not be who they appear to be, so take precaution.
-----------------------------------------------------------------------------
http://bofhskull.wordpress.com/
_______________________________________________
Asrg mailing list
Asrg(_at_)irtf(_dot_)org
http://www.irtf.org/mailman/listinfo/asrg
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [Asrg] RFC 6471 and "listing the Internet" as a punishment, Martijn Grooten
Next by Date:  Re: [Asrg] RFC 6471 and "listing the Internet" as a punishment, David Romerstein
Previous by Thread:  [Asrg] RFC 6471 and "listing the Internet" as a punishment, Martijn Grooten
Next by Thread:  Re: [Asrg] RFC 6471 and "listing the Internet" as a punishment, David Romerstein
Indexes:  [Date] [Thread] [Top] [All Lists]