Re: [Asrg] 7. Best Practices - DNSBLs - Article

[Brad Knowles <brad.knowles@skynet.be>]

At 1:09 PM -0400 2003/09/08, Chris Lewis wrote:

>  H'm, t'would be amusing to try this out with a much-hacked DNS server
>  doing the "sharing".  Create a query like
>  "sender.ip.recipient.greylistzone", and let the DNS server do the
>  counting.
	Interesting indeed.  Specifically with regards to the sample 
greylist implementation that is shipped in the latest snapshots of 
postfix, I was thinking about using a shared central MySQL database 
tied to a perl hash, or maybe a local proxy to a central program 
backed with a Berkeley db database tied to a perl hash.

	On a more general level, I was also thinking about how you could 
implement something like this with a dynamic update to a DNS zone.

>  I'm not the sender, only the recipient.  So, I couldn't be in
>  violation of such a rule.
	Anyone who retransmits within the thirty minute timeframe, for 
any reason, gets lambasted.

>  This is something I mean to try on our huge spamtrap.  If only as a
>  pure-research project...
	I look forward to hearing your results.

--
Brad Knowles, <brad.knowles@skynet.be>

"They that can give up essential liberty to obtain a little temporary
safety deserve neither liberty nor safety."
    -Benjamin Franklin, Historical Review of Pennsylvania.

GCS/IT d+(-) s:+(++)>: a C++(+++)$ UMBSHI++++$ P+>++ L+ !E-(---) W+++(--) N+
!w--- O- M++ V PS++(+++) PE- Y+(++) PGP>+++ t+(+++) 5++(+++) X++(+++) R+(+++)
tv+(+++) b+(++++) DI+(++++) D+(++) G+(++++) e++>++++ h--- r---(+++)* z(+++)

_______________________________________________
Asrg mailing list
Asrg@ietf.org
https://www1.ietf.org/mailman/listinfo/asrg