nanog mailing list archives
Re: [SHAME] Spam Rats
From: Rich Kulawiec <rsk () gsp org>
Date: Wed, 9 Jan 2013 22:40:25 -0500
On Thu, Jan 10, 2013 at 12:58:59PM +1000, Julian DeMarchi wrote:
This is the first RBL I have seen list a /24 for lack of PTRs. Not for sending spam, but just PTRs alone. How do you explain this to your customer?
First, this would be better on mailop. Second, they're running a DNSBL, not *the* RBL. Third, anyone may run any DNSBL with any policy they wish: listing IP addresses whose octets are primes, domains with the letter "j" in their names, etc. Provide they comply with RFC 6471, this isn't a problem. What *might* be a problem is how they're used and by whom, but one of the nice features of DNSLs in operational practice is that those with suboptimal listing policies aren't used much. Fourth, one of the hundreds of DNSBLs may be the least of your problems. For roughly a decade now, it's been a very good idea to refuse/defer all mail traffic from anything which doesn't have matching PTR and A records. (The refuse/defer depends on whether the problem appears to be a permanent misconfiguration or the temporary consequence of a DNS oops.) But again: mailop would be better for this. ---rsk
Current thread:
- PTRs for IPv6 (was Re: [SHAME] Spam Rats), (continued)
- PTRs for IPv6 (was Re: [SHAME] Spam Rats) Lee Howard (Jan 10)
- Re: [SHAME] Spam Rats Måns Nilsson (Jan 09)
- Re: [SHAME] Spam Rats John Levine (Jan 10)
- Re: [SHAME] Spam Rats Robert Bonomi (Jan 10)
- Re: [SHAME] Spam Rats Tony Finch (Jan 11)
- Re: [SHAME] Spam Rats JP Viljoen (Jan 10)
- Re: [SHAME] Spam Rats Owen DeLong (Jan 10)
- Re: [SHAME] Spam Rats Julian DeMarchi (Jan 09)
- Re: [SHAME] Spam Rats Rich Kulawiec (Jan 10)
- Re: [SHAME] Spam Rats Barry Shein (Jan 10)
- Re: [SHAME] Spam Rats Julian DeMarchi (Jan 09)