Re: New RBL for use with URIDNSBL plugin

[Marc Perkel]

Yes Tony - I really like that idea. I have done something like that myself using Exim rules to put the nameserver info into a header and then let Bayes chew on it. I noticed that the nameservers (of the last received IP) of spam looks different from nonspam and that it gave bayes more useful data to score from. I believe that the nameserver records of the IP address that the URIs resulve to would be very hot and would be a strong factor to identfy spam. I'm wondering if dumping the data into Bayes my be a better way of automatically scoring hat. But I REALLY like your idea! Tony Finch wrote: domains. If an email address or a URI uses a domain name whose nameservers are blacklisted (e.g. the SBL has appropriate listing criteria), or if the reverse DNS is hosted on blacklisted nameservers, these may be grounds for increasing the score. I don't know if SA does this check yet. Another approach is to blacklist nameservers that host spamvertized