Resources - Blacklists (DNSBLs, RBLs, etc.)
Most references here are to well-known blacklists, and other related lists that operate in the same manner. The actual list of blacklists throughout the world is very long, and although we've made an effort to include the more popular lists we welcome your suggestions to add more.
For your convenience, we added an RBL Check tool that you can use to check if an IP address or Internet Domain Name is blacklisted in any blacklist databases. If you'd like to check the one associated with your eMail address, for example, simply enter the portion following the at ("@") symbol (without the at symbol).
- Abusive Hosts Blocking List
- The AHBL is operated by the Summit Open Source Development Group, a group of software developers, system administrators, network administrators, and regular computer users who work together for the common good of the Internet.
- Abusix Global Reporting Projecct
- The idea behind the initial version of the Abusix Global Reporting Project was to make internet abuse visible to the responsible persons -- not with another fancy graphical website nobody is looking at, but by actively contacting network operators and reporting abusive behavior to them directly.
- Anonymous WHOIS
- AnonWhois.org provides a list of domains that are using a private or anonymous whois service. Although this is only an informational list, and foolish use of this list as a blacklist should not occur because so many domains are listed, it can be very helpful for other purposes such as checking the integrity of the eMail addresses of users signing up for web-based systems.
- APEWS.org - the internet's Anonymous Postmaster's Early Warning System
- APEWS is a list of areas on the Internet which several system administrators, ISP postmasters, and other service providers have assembled and use to deny eMail and, in some cases, all network traffic from. It appears to be modeled after SPEWS.
- CBL - Composite Blocking List
- The CBL takes its source data from very large spamtraps/mail infrastructures, and only lists IPs exhibiting characteristics which are specific to open proxies of various sorts (HTTP, socks, AnalogX, wingate etc) and dedicated spam-bots which have been abused to send spam, worms/viruses that do their own direct mail transmission, or some types of trojan-horse or "stealth" spamware, dictionary mail harvesters, etc.
- Distributed Checksum Clearinghouse
- The DCC, or Distributed Checksum Clearinghouse, is an anti-spam content filter based on fuzzy checksum algorithms that have evolved as spam is altered slightly between recipients (as spam automation becomes more sophisticated) to evade simple filters.
- GBUdb (Good, Bad, Ugly database)
- Good, Bad, Ugly database (GBUdb) is a real-time collaborative IP reputation system. This system is built into products like Message Sniffer and other eMail filters equipped with GBUdb, which keeps track of these statistics and shares them with others across the Internet in real-time, allowing these systems to learn from each other and keep track of which IPs are sending good eMail versus which ones are sending spam.
- LumberCartel - for the benefit of the Internet community
- LumberCartel.org operates a number of DNS-Based Blackhole Lists for the benefit of the Internet community. [Although they appear to be based in the USA, we're not making any assumptions.]
- MAPS - Stopping spam at its source
- MAPS was founded in late 1996 to pioneer the development of anti-spam technology and network policies. As the original anti-spam company, MAPS has become the industry leader in providing network layer spam blocking services. The executive team's insight into how companies grappled with the growing dilemma of spam flowing into and around the Internet led to the creation of the MAPS RBL+® (Realtime Blackhole List) Master Service.
- NJABL - Not Just Another Bogus List
- The NJABL effort began out of frustration with the amount of spam coming into the operators' networks. They maintain a list of known and potential spam sources (open relays, open proxies, open form to mail HTTP gateways, dynamic IP pools, and direct spammers) for the purpose of being able to tag or refuse eMail and prevent at least some spam.
- ORDB.org - Open Relay Database
- ORDB.org is the Open Relay Database. ORDB.org is a non-profit organisation which stores IP-addresses of verified open SMTP relays. These relays are, or are likely to be, used as conduits for sending unsolicited bulk email, also known as spam. By accessing this list, system administrators are allowed to choose to accept or deny email exchange with servers at these addresses.
- PSBL - Passive Spam Block List
- An easy-on, easy-off blacklist that doesn't rely on testing. Any user can remove their ISP's mail server from the list. The idea is that 99% of the hosts that send spam never send legitimate eMail, but that people whose mail server was used by spammers should still be able to send eMail.
- Project Honey Pot
- Project Honey Pot is a distributed system for identifying spammers and the spambots that are used to scrape addresses from internet web sites. Participation is required to utilize this DNSBL, which is community-oriented by nature.
In using the Project Honey Pot system, you can install addresses that are custom-tagged to the time and IP address of a visitor to your site, then if one of these addresses begins receiving eMail, the project can tell that the messages are spam and also provide the exact moment when the address was harvested (and the IP address the harvester used to collect it).
- RSL - Relay Stop List
- The VISI.com RSL is a DNS-based list of mail servers that have relayed third-party spam within the recent past. If you run a mail server, you can use this list to refuse mail from those servers. People often block mail from these "open relay" mail servers on the premise that where some spam has traveled, more is likely to follow.
The vast majority of RSL data is compiled on an automated basis, primarily through the use of spamtrap addresses. This data is gathered for the purpose of benefitting VISI.com customers in their spam filtering and blocking efforts, but is offered free of charge to the greater Internet community, for as long as we have the resources to spare.
- SORBS.net - Spam and Open Relay Blocking System
- SORBS is an acronym for Spam and Open Relay Blocking System. This is not strictly accurate as a description though, as it stops Open Proxy servers and machines that appear to be hacked sorces of spam, as well as Open Relays.
- SpamCop.net - protecting the internet through technology
- Beware of cheap imitations! SpamCop has been protecting the internet community since 1998. Automatically file spam reports with the network administrators who can stop unsolicited email at the source. Subscribe, and filter your email before it reaches your inbox.
- Spamhaus Project, The - working to protect internet networks worldwide
- Spamhaus tracks the Internet's Spammers, Spam Gangs and Spam Services, provides dependable realtime anti-spam protection for Internet networks, and works with Law Enforcement to identify and pursue spammers worldwide.
- SPEWS.org - the internet's Spam Prevention Early Warning System
- SPEWS is a list of areas on the Internet which several system administrators, ISP postmasters, and other service providers have assembled and use to deny eMail and, in some cases, all network traffic from. It appears to have been replaced by APEWS.
- UCEPROTECT®-Network - Germany's first Spam protection database
- The idea behind UCEPROTECT®-Network is that abusers should be given no chance to clean up their act. Although it's unrealistic to educate all internet users to secure there computers, it certainly is possible to force internet administrators, providers, and carriers to take preventive measures against eMail abuse. ...
- VirBL project
- The VirBL database, which contains a list of IP addresses (with some exceptions) that have transmitted viruses via eMail, is a project of which the idea was born during a RIPE-48 meeting in May 2004. This list is probably the first to support both IPv4 and IPv6 lookups.