[RPZ] "DNS Firewalls In Action - RPZ vs. Spam" (circleid)

Paul Vixie paul at redbarn.org
Fri Jan 4 18:57:34 UTC 2013


...

John Hascall wrote:
> So, what we need is an RPZ provider who lists all newly created
> domains for a few days...

being newly created, or being newly seen for the first time, are not
good rubrics for evil. all evil has to do beat this system is register a
domain 72 hours (or 72 days, or whatever) and reference it a few times
before its first malcious use. furthermore, many good and decent domain
names are created only hours or minutes before their first
never-malicious use.

paul



More information about the DNSfirewalls mailing list