This archive is retained to ensure existing URLs remain functional. It will not contain any emails sent to this mailing list after July 1, 2024. For all messages, including those sent before and after this date, please visit the new location of the archive at https://mailman.ripe.net/archives/list/[email protected]/

[anti-abuse-wg] Malware/ransomware current live distribution IPs

Previous message (by thread): [anti-abuse-wg] Malware/ransomware current live distribution IPs
Next message (by thread): [anti-abuse-wg] Malware/ransomware current live distribution IPs

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Ronald F. Guilmette rfg at tristatelogic.com
Thu Jun 30 22:04:55 CEST 2016

andre at ox.co.za you wrote:

>If you would like to add superblock.ascams.com - these seem like good links:
>
>Exim : http://www.exim.org/howto/rbl.html
>postfix :https://www.howtoforge.com/block_spam_at_mta_level_postfix

Note: The specific domains and IPs I have just posted
are pointless to block in mail server configs, because the final
"landing page" domains that are actually spreading the infectious
agents are never seen, and will never be seen in e-mails.  Rather,
there _is_ spam... lots of it... trying to get people to go to these
infection domains, but only via a sequence of one or two redirections
(through other domains) first.

Regards,
rfg

Previous message (by thread): [anti-abuse-wg] Malware/ransomware current live distribution IPs
Next message (by thread): [anti-abuse-wg] Malware/ransomware current live distribution IPs

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

[ anti-abuse-wg Archives ]