On 06/09/2014 02:42 PM, Matthias Leisi wrote: > > On Mon, Jun 9, 2014 at 11:31 PM, Richard Doyle > <lists...@islandnetworks.com <mailto:lists...@islandnetworks.com>> wrote: > > > A caching whois client (jwhois, for example) can significantly reduce > the volume of queries. > > > You will need to query potentially hundreds or thousands of domains > *per day* - mostly throw away domains from spammers. > > 1) What are the typical rate limits on public whois servers? Apparently higher than my usage (cached names aren't rechecked)
> 2) How to protect against attackers sending random non-existant domain > names your way, thus ensuring you hit rate limites early? Sender verification > 3) How to parse the myriads of formats sent by whois servers? Don't try (see 4) > 4) How do you handle TLDs which do not publish registration dates, > like eg .de? (At least they did not last time I checked.) I only check .com, .net and .org > > Whois is not a feasible data source. Whois certainly has limited usefulness, but is a "feasible data source" within those limits > > -- Matthias > -Richard