Slightly OT: Looking for an old domain for spam collection
Ken Simpson
ksimpson at mailchannels.com
Wed Mar 28 16:05:45 UTC 2007
> The conclusion of that thread can be found here:
> http://www.merit.edu/mail.archives/nanog/msg04555.html
Thanks!
> A word of caution. When attempting to collect IP address based abuse
> information, spoofed BGP announcements MUST be tracked as well. This
> topic or even mention of ASNs was excluded in the "Guidelines for
> Management of DNS-Based Reputation Systems for Email" written by Yakov
> Shafranovich, Nick Nicholas, Matt Sergeant, and Chris Lewis and
> published by Nick Nicholas on the ASRG reflector. This paper ironically
> excluded the role of the provider.
We're not going to be using the data as a honey pot, so it won't
affect anyone's reputation. This is really just for "real-world" load
testing and evaluation of new techniques.
Our customers get lots of mail, but we have to be -- how shall I say
-- careful with it!
> A cooperative effort by providers is likely the _only_ viable solution
> for dealing with this chronic problem. Targeted abuse is also unlikely
> to be detected from disposed MX domains, but will detect amateurs.
I agree whole-heartedly. What is particularly missing IMHO is a
spoofed-BGP-route blacklist. Anyone making any progress on that sort
of thing?
Regards,
Ken
--
Ken Simpson, CEO
MailChannels Corporation
Reliable Email Delivery (tm)
http://www.mailchannels.com
More information about the NANOG
mailing list