Actions
Feature #16788
open
RDAP Lookups to detect new and spammy websites
Status:
New
Priority:
Normal
Assignee:
-
Category:
pfBlockerNG
Target version:
-
Start date:
Due date:
% Done:
0%
Estimated time:
Plus Target Version:
Description
It would be a nice feature to be able to configure a RDAP lookup to detect if a domain is younger than X days. This would prevent many websites from being accessed and delivering malware.
- The date threshold for assssing the domain as new should be configurable.
- A good default threshold is 7 days.
- Domains that are flagged as new should return NXDOMAIN
- Maybe cache RDAP lookups with domain age/created date to prevent further lookups
- A user can specify the RDAP server, this allows a user to setup their own RDAP server with full caching.
As a side effect, when an email server does a lookup and gets an NXDOMAIN then it can be configured to drop the related emails.
thanks for looking
No data to display
Actions