R: URIWhois-0.02

> -----Messaggio originale-----
> Da: Bret Miller [mailto:bret.miller@wcg.org]
> Inviato: giovedì 27 settembre 2007 17.16
>
> Perhaps rather than arguing about whether we'd all get blocked by
> running
> this, it would be more productive to lobby a registrar to provide the
> data
> in rsynch-able form to URIBL or SURBL where DNS infrastructure could be
> used
> to make the data available for such a use. Maybe none will cooperate,
> maybe
> one will.
>
> We can agree that
>
> 1. Querying whois directly is a bad idea if you have significant mail
> volume.
>
> 2. Whois data (namely, the domain creation date) can provide a hint
> that the
> URI might point to a spammer site.

This is not the sole info that could somehow be useful in spotting spam out. I would suggest that also the nameservers defined in the registrar record, as well as perhaps the registrar name, could be used in penalize spam.

> So, how can we get whois data without going directly to whois for every
> query?

Actually, I don't see many ways. Please note some registrar may even bring privacy-related reasons, or even put the "industrial secret" mark on the data they have in their database, thereby not allowing you any access to it. So, even whois replies are not guaranteed to give enough hints...

I guess that the main problem in this is in the terms of the agreement registrars sign with ICANN: that agreement doesn't specify what data should be present in a whois reply, nor who is entitled to use that service...

Giampaolo

>
> Bret
Received on Thu Sep 27 12:58:52 2007