DNSBLs

DNSBLs, or DNS-based blacklists, are a class of DNS-based lists used to publish IP addresses (and sometimes domains) that are considered abusive, such as sources of spam or hosts distributing malware. They are commonly used by mail servers and gateway devices to assess whether an incoming connection should be accepted, deferred, or rejected.

Mechanism and operation: A DNSBL operator maintains a DNS zone that associates each listed address with a

Usage and considerations: DNSBLs are most commonly consulted by mail transfer agents to help filter unsolicited

Limitations and criticism: DNSBLs can produce false positives or miss newly compromised systems during update delays.

Notable examples include Spamhaus (with SBL, XBL, PBL and the ZEN aggregate) and SORBS, among others.