Hypothetically if one were running a reputation system and didn't want to block all of a TLD like .pw, one could:
Locally cache whois info create a local rbl check against a sending domain on the whois info based on both the registrar and the creation date Created On:08-May-2013 05:24:04 UTC Name Server:DNS1.REGISTRAR-SERVERS.COM Anything created in the last 3 days and by that registrar could be blocked locally. Hypothetically :) --Chris (My top posts smell like strawberries) > -----Original Message----- > From: Steve Prior [mailto:spr...@geekster.com] > Sent: 2013-05-07 23:02 > To: users@spamassassin.apache.org > Subject: Re: .pw / Palau URL domains in spam > *snip* > > I blocked everything from TLD pw at the Postfix level so the > email gets rejected > without ever hitting spamassassin. *snip* > Problem went away completely, sorry Palau. > > Steve >
