Jeff Chan wrote:
red.surbl.org "this is an open redirector" could be also useful.
It doesn't really fit our model, which is to list blackhats, especially zombie users.
Spammers are slow, but sooner or later they'll use redirectors everywhere to bypass SURBL. I don't see the relation between zombies and SURBL, zombies are used to send spam, not to host spamvertized sites. Or are you talking about zombies used as redirectors, are we already at this point ?
It is possible to blacklist nina.18.to but not 18.to if nina is owned by spammers but 18 is not.
I found neither nina.18.to nor 18.to in multi when I looked for it. Today http://nina.18.to is http://Opt.To/notfound.htm
Opt.To offers "free subdomain name redirection service and ads for your site". Whatever that means. AFAIK the automatical procedures won't list subdomains of a SLD as long as the SLD is not a "two level ccTLD". Maybe you could add redirectors like 18.to to http://spamcheck.freeapp.net/two-level-tlds
Otherwise I don't see how you could catch the next nina.18.to if it's reported indirectly via SC as spamvertized site. Bye.