X-Git-Url: https://git.netwichtig.de/gitweb/?a=blobdiff_plain;f=dnslists.otl;h=312ce13a94bc7e420db2850ff7693cecb6b95454;hb=3acf682657fb902178c497058c032e50ab98995c;hp=0e88d485c243a04bbb59f4eb234c170987a54dd5;hpb=443585276b3022158103daf728563cf7a633d46e;p=user%2Fhenk%2Fdocs%2Fdnsbl_notes.git diff --git a/dnslists.otl b/dnslists.otl index 0e88d48..312ce13 100644 --- a/dnslists.otl +++ b/dnslists.otl @@ -8,13 +8,6 @@ TODO implement in exim implement in SA implement in rspamd -implement - https://abuse.ro/ - policy - spamtraps - The last IP address before destination in the email headers is listed into rbl.abuse.ro list. - Sender domains are analyzed and if confirmed to be not spoofed, are listed into dbl.abuse.ro list - Spamvertized domains (including those indirectly linked through services like bit.ly) are listed into uribl.abuse.ro list 00_META https://bugs.launchpad.net/ubuntu/+source/amispammer/+bug/835614 http://www.blalert.com/dnsbls @@ -171,6 +164,29 @@ implement aka dul.pacifier.net http://www.stopspam.org/rbl-info/ stopped in 2013 + http://countries.nerd.dk/ + unable to connect, also for nerd.dk + http://dul.ru/dul.en.html + DEAD for sale + http://dns.measurement-factory.com/surveys/openresolvers.html + dead + »The following text describes past open DNS resolver surveys and an associated DNS lookup service that has been long shut down« + http://www.sectoor.de/tor.php + timeouts + http://anticaptcha.net/ + for sale + http://blacklist.lashback.com/ + query zone: ubl.unsubscore.com + provider’s website https://lashback.com/ seems alive and active (news entries from 2023) but does not link to the blacklist + rsync URLs seem dead, so does the download url + http://blacklist.woody.ch/ + no entries in the displayed "top 100" + may have been absorbed into the swinog blacklists, see antispam.imp.ch + http://cbl.abuseat.org/ + https://www.abuseat.org/ + changes to the CBL that occured in January 2021. In short, the CBL infrastructure was replaced by the Spamhaus XBL structure + http://dnsbl.burnt-tech.com/ + domain is for sale 00_NEEDS_RECHECK https://antispam.imp.ch/ no usage policy @@ -191,6 +207,22 @@ implement http://blacklist.woody.ch/rblcheck.php3 dead? waiting for feedback + http://dnsbl.iip.lu/ + https://docs.hetrixtools.com/lookup-dnsbl-iip-lu-false-positive-removed/ + in 2016: lookup.dnsbl.iip.lu blacklist started issuing false positive responses and upon further investigation looks to be abandoned/dead. + https://www.blalert.com/dnsbl/lookup.dnsbl.iip.lu + This blacklist is marked as "shut down" and non-operational as of 2017-12-31. + http://dnsbl.inps.de/ + timeout + https://www.dnsbl.com/search/label/dnsbl.inps.de + Today, May 25, 2020, he has announced that it is shutting down, due to concerns around GDPR and personal challenges brought on by the coronavirus pandemic. + https://docs.hetrixtools.com/dnsbl-inps-de-removed-from-our-system/ + [May 29,2018] IPv4 RBL dnsbl.inps.de has been removed from our system, as they have decided to discontinue the RBL project for the time being. + https://glockapps.com/blacklist/dnsbl-inps-de/ + Today, May 25, 2020, he has announced that it is shutting down, due to concerns around GDPR and personal challenges brought on by the coronavirus pandemic. + https://www.dnsbl.info/dnsbl-details.php?dnsbl=dnsbl.inps.de + This blacklist is offline as of May 1, 2020. + https://web.archive.org/web/20220428013500/http://www.inps.de/ 00_NEEDS_RESEARCH bl.tiopan.com blocked.hilli.dk @@ -267,6 +299,12 @@ implement https://docs.trendmicro.com/en-us/enterprise/email-reputation-services-online-help/getting-started_001/configuring-email-re/creating-an-account.aspx »If you don’t create an account, you can still query the reputation of an IP address« I don’t find any pricing or usage information + http://dnsbl.tornevall.org/ + https://www.tornevall.net/ + related to https://www.fraudbl.org/ + seems a bit unstructured and not very well documented + I can’t be arsed to deal with confluence slowing my browser to a halt repeatedly and it’s really hard to navigate but there seems to be some information on https://docs.tornevall.net/display/TORNEVALL/Endpoint%3A+dnsbl+-+DNSBL+v5+with+API+v3 + seems active 00_E_PAID 00_E_PRIVATE 88.blacklist.zap @@ -407,17 +445,14 @@ implement https://www.madavi.de/madavibl/ »This blacklist should only be used to block comment spammer (on blogs and websites). Don’t use it for mail.« http://bsb.empty.us/ + does not exist anymore + empty.us returns »Nothing here, obviously.« 00_LISTS_COUNTRIES - http://countries.nerd.dk/ korea http://korea.services.net/ 00_LISTS_DIALUPS - http://dul.ru/dul.en.html - DEAD for sale 00_LISTS_OPENRESOLVERS - http://dns.measurement-factory.com/surveys/openresolvers.html 00_LISTS_TORNODES - http://www.sectoor.de/tor.php https://www.dan.me.uk/dnsbl https://0spam.org/ clear information on usage policy @@ -429,19 +464,26 @@ implement nbl.0spam.org Network Black List | Spam Source Networks, high volume of spam trap hits in a Class C block will result in network listings in this DNSBL. url.0spam.org URL Black List | This list contains the IP address of domains found to be in the source of spam emails found in our traps. return codes not very clear - http://anticaptcha.net/ - http://blacklist.lashback.com/ - http://ubl.unsubscore.com - http://blacklist.woody.ch/rblcheck.php3 - http://cbl.abuseat.org/ - http://dnsbl.burnt-tech.com/ - http://dnsbl.iip.lu/ - http://dnsbl.inps.de/ - http://dnsbl.tornevall.org/ + https://abuse.ro/ + policy + spamtraps + The last IP address before destination in the email headers is listed into rbl.abuse.ro list. + Sender domains are analyzed and if confirmed to be not spoofed, are listed into dbl.abuse.ro list + Spamvertized domains (including those indirectly linked through services like bit.ly) are listed into uribl.abuse.ro list http://dronebl.org/ - http://mailspike.net/usage.html + usage policy is clear: free for whatever + listing policy is not quite so clear + can be mostly inferred from the classes but not entirely clear IMHO + has an IRC channel + return codes + not explicitly mentioned but it’s 127.0.0.X where X is the class from https://dronebl.org/classes http://psbl.org/ query zone: psbl.surriel.com + no usage policy, but seems implied that usage is free + listing policy + no explicit, complete policy given but sending to spamtraps is mentioned to get you listed and seems the exclusive mechanism + return codes + not documented, probably only boolean http://rbl.dns-servicios.com/rbl.php http://rbl.schulte.org/ http://rbldata.interserver.net/ @@ -467,7 +509,6 @@ implement http://www.justspam.org/ http://www.kempt.net/dnsbl/ http://www.leadmon.net/spamguard/ - http://www.rbl.jp/allrbl-e.html http://www.spamcop.net/ good policy good reputation @@ -475,13 +516,8 @@ implement sensible policy http://www.srntools.com/blacklist/ http://www.uceprotect.net/en/index.php - http://www.usenix.org.uk/content/rbl.html - http://zapbl.net/ https://bl.konstant.no/ https://choon.net/rbl.php - https://puck.nether.net/or/ - might be good - https://rbl.foobar.hu/ https://www.abuse.ch/ https://www.abuse.ch/?tag=httpbl https://www.kisarbl.or.kr/ @@ -489,19 +525,13 @@ implement https://www.team-cymru.org/Services/Bogons/dns.html http://mailspike.net/usage.html reputation-based - http://www.spamhauswhitelist.com/en/ - policies for listing and usage on the website http://www.whitelisted.org/ paid subscription policy on site https://puck.nether.net/or/ policies on website - https://rbl.foobar.hu/ - usage and listing policies on website http://www.isipp.com/email-accreditation/iadb-query-instruction/ requires signup - https://choon.net/rbl.php not quite a usage policy, but seems ok strange split of ipv4 and ipv6 seems dead? - https://www.dnswl.org/