You are not logged in.
- Topics: Active | Unanswered
Pages: 1
Topic closed
#1 2009-07-19 8:34 pm
- Tornevall
- Member
- From: Sweden
- Registered: 2009-07-19
- Posts: 58
DNS Blacklist
We have now initiated a "bridge" between Stop Forum Spam and a DNS-blacklist located at http://dnsbl.tornevall.org/ , called RemoteSubmit. If someone wants to test this service, you are welcome to do so!
The DNS loads, from SFS submitted data, four times per day, with all ip's submitted. All daily updates will also be distributed by list at http://forum.tornevall.net/forumdisplay.php?f=373 , if anyone wants to see if everything works properly!
DNSBL, Proxy/Spam Blacklist - http://dnsbl.tornevall.org
Offline
#3 2009-07-20 7:30 pm
- Russ
- Guest
Re: DNS Blacklist
This is a big step for the project and I hope the developers who maintain plugins will eventually move to querying the DNSBL instead of our database directly - it'll help with the load on the server and increase reliability.
#4 2009-07-20 8:32 pm
- Tornevall
- Member
- From: Sweden
- Registered: 2009-07-19
- Posts: 58
Re: DNS Blacklist
Excellent! Can I use your Black list in dnsbl.tornevall.org to check addresses in my personal mail server?
Absolutely! Hopefully we may stop some mail-spammers too.
Some plugins and scripts are by the way distributed from http://dnsbl.tornevall.org/?do=download on how to use it on webservers, with full caching (that is almost necessary to not overload resolvers).
Edit: A comma in the link removed
Last edited by Tornevall (2009-07-21 8:58 am)
DNSBL, Proxy/Spam Blacklist - http://dnsbl.tornevall.org
Offline
#5 2009-07-20 9:07 pm
- MysteryFCM
- Member
- From: Tyneside, UK
- Registered: 2008-01-16
- Posts: 606
- Website
Re: DNS Blacklist
Integrated it into the SBST
Regards
Steven Burn
I.T. Mate / hpHosts
it-mate.co.uk / hosts-file.net
Offline
#6 2009-07-21 4:51 pm
- diabolic.bg
- Member
- From: Bulgaria, Eastern Europe
- Registered: 2008-11-03
- Posts: 589
- Website
Re: DNS Blacklist
diabolic.bg wrote:Excellent! Can I use your Black list in dnsbl.tornevall.org to check addresses in my personal mail server?
Absolutely! Hopefully we may stop some mail-spammers too.
Some plugins and scripts are by the way distributed from http://dnsbl.tornevall.org/?do=download on how to use it on webservers, with full caching (that is almost necessary to not overload resolvers).
Edit: A comma in the link removed
My server have a DNSBL check and I only must add new addresses. For now I use 7-8 as bl.spamcop.net, b.barracudacentral.org, zen.spamhaus.org and some others.
Every day I add spammers here and in Spamcop where I have account. The pests must be fight.
Funiest jokes and pics
Offline
#7 2009-07-22 9:22 pm
- davert
- Member
- Registered: 2009-05-28
- Posts: 17
Re: DNS Blacklist
So just to confirm, if I use the API, any mail spam will show up? Or is this only for manual searches?
Offline
#8 2009-07-31 10:52 am
- Tornevall
- Member
- From: Sweden
- Registered: 2009-07-19
- Posts: 58
Re: DNS Blacklist
So just to confirm, if I use the API, any mail spam will show up? Or is this only for manual searches?
The DNSBL is totally automated and uses DNS-resolving to check blacklisted hosts. Are you planning to use it in a spamfilter, see if the spamfilter has support for RBL's.
DNSBL, Proxy/Spam Blacklist - http://dnsbl.tornevall.org
Offline
#9 2009-08-19 11:37 am
- Tornevall
- Member
- From: Sweden
- Registered: 2009-07-19
- Posts: 58
Re: DNS Blacklist
Statistics?
13270 hosts has been reported since the beginning of this project!
DNSBL, Proxy/Spam Blacklist - http://dnsbl.tornevall.org
Offline
#10 2009-08-24 10:04 am
- pedigree
- uıɐbɐ ʎɐqǝ ɯoɹɟ pɹɐoqʎǝʞ ɐ buıʎnq ɹǝʌǝu ɯ,ı
- From: New Zealand
- Registered: 2008-04-16
- Posts: 7,056
Re: DNS Blacklist
I have a perl daemon running doing this for IP numbers and usernames (via encoding) but due to limitations on dns length, it only ever worked with IP addresses. encoding UTF names into a string in order to query DNS can be used to bypass testing due to the length required
Offline
#11 2009-08-24 10:50 am
- Tornevall
- Member
- From: Sweden
- Registered: 2009-07-19
- Posts: 58
Re: DNS Blacklist
I have a perl daemon running doing this for IP numbers and usernames (via encoding) but due to limitations on dns length, it only ever worked with IP addresses. encoding UTF names into a string in order to query DNS can be used to bypass testing due to the length required
Doing tests on usernames sound a bit risky, I think it's better to only do it on ip's. And since that is possible without the encoding, I guess that makes the tests more secure?
DNSBL, Proxy/Spam Blacklist - http://dnsbl.tornevall.org
Offline
#12 2009-08-24 4:47 pm
- pedigree
- uıɐbɐ ʎɐqǝ ɯoɹɟ pɹɐoqʎǝʞ ɐ buıʎnq ɹǝʌǝu ɯ,ı
- From: New Zealand
- Registered: 2008-04-16
- Posts: 7,056
Re: DNS Blacklist
pedigree wrote:I have a perl daemon running doing this for IP numbers and usernames (via encoding) but due to limitations on dns length, it only ever worked with IP addresses. encoding UTF names into a string in order to query DNS can be used to bypass testing due to the length required
Doing tests on usernames sound a bit risky, I think it's better to only do it on ip's. And since that is possible without the encoding, I guess that makes the tests more secure?
Exactly. The source that I have here was all ready to roll out but the host of the api/website etc, already runs dns on port 53 and we didnt have a virtual ip available to be dedicated to the daemon
Offline
#13 2009-10-21 7:47 pm
- Tornevall
- Member
- From: Sweden
- Registered: 2009-07-19
- Posts: 58
Re: DNS Blacklist
TMM wrote:pedigree wrote:I have a perl daemon running doing this for IP numbers and usernames (via encoding) but due to limitations on dns length, it only ever worked with IP addresses. encoding UTF names into a string in order to query DNS can be used to bypass testing due to the length required
Doing tests on usernames sound a bit risky, I think it's better to only do it on ip's. And since that is possible without the encoding, I guess that makes the tests more secure?
Exactly. The source that I have here was all ready to roll out but the host of the api/website etc, already runs dns on port 53 and we didnt have a virtual ip available to be dedicated to the daemon
It should be enough if your website can resolve hosts in some way. Isn't that possible?
By the way, currently we have 26072 hosts added to the dnsbl, since the project has started, and we have a total of 213002 hosts. It's currently have a very fast growth
DNSBL, Proxy/Spam Blacklist - http://dnsbl.tornevall.org
Offline
#14 2009-10-21 9:12 pm
- pedigree
- uıɐbɐ ʎɐqǝ ɯoɹɟ pɹɐoqʎǝʞ ɐ buıʎnq ɹǝʌǝu ɯ,ı
- From: New Zealand
- Registered: 2008-04-16
- Posts: 7,056
Re: DNS Blacklist
This website is on a shared box, we dont have root access to run a port 53 daemon
Offline
Pages: 1
Topic closed