how to set up an RBL
Furnish, Trever G
TGFurnish at HERFF-JONES.COM
Thu Aug 28 17:46:46 IST 2003
My problem with volunteering to take part in an RBL (speaking entirely as an
individual, not for my employer) is the potential for DDoS attacks (which
can cripple a company that depends upon its network pipes) and the potential
for lawsuits. While I completely believe that lawsuits related to RBL lists
are groundless, fighting them still takes money.
So I'm pondering... how do you provide a network service on a public network
without opening it up to those who would attack it -- ie without even
letting them be aware of it or letting them determine its network address?
I'm imagining secret meetings to verify user identities and access lists to
allow only approved query sources (meaning they can more easily be pushed
out to an ISP's edge should a DDoS actually occur). :-)
I like the way spamcop seems to work - auto-remove a site after 2 days if it
hasn't been resubmitted - but I'd prefer a longer timeout since many MTAs
retry delivery for up to 5 days.
-t.
> -----Original Message-----
> From: Anders Andersson, IT [mailto:anders.andersson at LTKALMAR.SE]
> Sent: Thursday, August 28, 2003 9:02 AM
> To: MAILSCANNER at JISCMAIL.AC.UK
> Subject: SV: how to set up an RBL
>
>
> > -----Ursprungligt meddelande-----
> > Från: Raymond Dijkxhoorn [mailto:raymond at PROLOCATION.NET]
> >
> > Hi!
> >
> > > We might be interested in following suit, as the quantity of spam
> > > getting through recently is not acceptable (Spam Assasin keeps on
> > > timing out!)
> >
> > Its perhaps completely OT here, but why not combine forces? I
> > am willing to facilitate a couple of DNSes and we are with a
> > lot of network guys here, so we might do it right for once.
> >
> > We all try to fight spam, we all see the spammers comming in,
> > so we only need a interface to get things in.
> >
> > Are there people interested in that idea ?
> I think that might be a solution worth thinking of....
> probably alot to
> think about when it comes to how it would work. I mean, there
> has to be
> rules etc but definitly worth considering
> /Anders
>
> >
> > Bye,
> > Raymond.
> >
>
More information about the MailScanner
mailing list