[Asrg] Round 2 of the DNSBL BCP
Chris Lewis
clewis at nortel.com
Tue Apr 1 15:59:35 PDT 2008
Chris Lewis wrote:
> Matthew Sullivan wrote:
>
>> SORBS has listed 127.0.0.1 in the past, though never used it as a return
>> code. It occurred due to error, but it was an easy one - the relay
>> tester was triggered to test localhost by someone first setting up an
>> open relay then sending spam, then within hours changing the DNS record
>> to return 127.0.0.1 for the host. Result, a request for a valid
>> hostname was put in the system then before it was tested someone changed
>> the target IP to localhost. This was fixed fairly promptly but it was
>> not an indicator of a shutdown. I believe other DNSBls have listed
>> 127.0.0.1 on occasion.
I put this into the section on reserved addresses (becomes second
paragraph):
<t>As additional insurance against listings of space that should
not be through testing or other unforeseen events, DNSBL
operators SHOULD
consider implementing facilities to prevent them. At least one
popular automated DNSBL has implemented permanent exclusions for
such addresses.</t>
I consider this a reliability/integrity improvement.
More information about the Asrg
mailing list