***SPAM*** [SURBL-Discuss] Why are subdomains not blacklisted?

Jeff Chan jeffc at surbl.org
Fri Nov 24 00:56:25 CET 2006

On Thursday, November 23, 2006, 1:10:23 PM, Kelly Jones wrote:
> I received two separate spams advertising
> "uztiuqhcsgdnhsx.kennevur.com" and "678.com.plaweresoft.com" as the
> domains.

> multi.surbl.org lists the domains as blacklisted:

>> host kennevur.com.multi.surbl.org
> kennevur.com.multi.surbl.org has address

>> host plaweresoft.com.multi.surbl.org
> plaweresoft.com.multi.surbl.org has address

> but not the subdomains:

>> host uztiuqhcsgdnhsx.kennevur.com.multi.surbl.org
> Host uztiuqhcsgdnhsx.kennevur.com.multi.surbl.org not found: 3(NXDOMAIN)

>> host 678.com.plaweresoft.com.multi.surbl.org
> Host 678.com.plaweresoft.com.multi.surbl.org not found: 3(NXDOMAIN)

> Why? Wouldn't it be easy/sensible to wildcard the blacklist to include
> these?

The subdomains are meaningless, random or keyed, so SURBL data
does not include them.  Applications are meant to not include
them also:


If you are using an application that does not discard that
portion of the domains, then please let the application authors
know that they should be doing that.  Also you may want to check
out our FAQ:


Jeff C.
Don't harm innocent bystanders.

More information about the Discuss mailing list