Send RBL lists & updates by email :) I'm mostly serious - rbl lists can be easily incorporated as special filter for email or it can run internal rbl (rbldns is very small code), emails sent with specific characteristics can be filtered to trigger the update (all such emails would need to be signed and signature can be verified by recepient mail server to be one on its allowed rbl list). Any attempts to DoS origin of such email updates would be useless as origin can be changes very easily and the updates do not depend on working dns. Blacklist's websites would still be subject to DoS attacks, but that is separate issue and would not stop with blacklist actual use. On Wed, 24 Sep 2003, Drew Weaver wrote:
I know you all have probably already thought of this, but can anyone think of a feasible way to run a RBL list that does not have a single point of failure? Or any attackable entry?
Disregard this if im totally out of line, but it would seem to me that this would be possible.
Thanks,
-Drew
-- William Leibzon Elan Networks william@elan.net