Hello,
I noticed that RIPE NCC uses uceprotect-level1, uceprotect-level2 and
uceprotect-level3 in RIPEStat Anti Abuse Blacklist Entries widget.
There have been controversial positions about this blacklist recently:
1)
https://success.trendmicro.com/solution/000236583-Emails-being-rejected-by-RBL-UCEPROTECL-in-Hosted-Email-Security-and-Email-Security
[1]
2) https://blog.sucuri.net/2021/02/uceprotect-when-rbls-go-bad.html [2]
UCEPROTECT blacklists the whole range of IP addresses, including the
full IP range of some autonomous systems:
UCEPROTECT states, '_Who is responsible for this listing? YOU ARE NOT!
Your IP was NOT directly involved in abuse but has a bad neighborhood.
Other customers within this range did not care about their security and
got hacked, started spamming, or were even attacking others, while your
provider has possibly not even noticed that there is a serious problem.
We are sorry for you, but you have chosen a provider not acting fast
enough on abusers'_) [http://www.uceprotect.net/en/rblcheck.php [3]].
It asks for a fee if some individual IP address wants to be whitelisted
(http://www.whitelisted.org/),
It abuses people who decide to challenge their blacklist by publishing
conversations in their so-called _Cart00ney_
(http://www.uceprotect.net/en/index.php?m=8&s=0 [4];
http://www.uceprotect.org/cart00neys/index.html [5]).
And the other type of threatening: http://www.uceprotect.org/
Does RIPE NCC have any position on this specific blacklist?
Thank you!
Links:
------
[1]
https://success.trendmicro.com/solution/000236583-Emails-being-rejected-by-RBL-UCEPROTECL-in-Hosted-Email-Security-and-Email-Security
[2] https://blog.sucuri.net/2021/02/uceprotect-when-rbls-go-bad.html
[3] http://www.uceprotect.net/en/rblcheck.php
[4] http://www.uceprotect.net/en/index.php?m=8&s=0
[5] http://www.uceprotect.org/cart00neys/index.html
