阻止评论垃圾邮件的IP地址

时间:2015-02-11 14:55:55

标签: ip-address spam

我一直在接收来自各种IP地址的垃圾邮件,下面就是一个例子:

XX.XX.XX.123
XX.XX.XX.217
XX.XX.XX.179

是否可以查找一系列IP地址的所有者,或者当前三个块相同时,我是否可以安全地阻止范围:

XX.XX.XX.100 - XX.XX.XX.255

1 个答案:

答案 0 :(得分:1)

有五个Regional Internet Registrars(RIR)被委派控制IP空间。他们每个人都可以通过whois来托管所有者的信息,您可以查询这些信息。从命令行,这将是:

$ whois 55.55.55.100
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#


#
# The following results may also be obtained via:
# http://whois.arin.net/rest/nets;q=55.55.55.100?showDetails=true&showARIN=false&ext=netref2
#

NetRange:       55.0.0.0 - 55.255.255.255
CIDR:           55.0.0.0/8
NetName:        CONUS-RCAS
NetHandle:      NET-55-0-0-0-1
Parent:          ()
NetType:        Direct Allocation
OriginAS:       
Organization:   Headquarters, USAISC (HEADQU-3)
RegDate:        1996-10-26
Updated:        2011-02-23
Ref:            http://whois.arin.net/rest/net/NET-55-0-0-0-1


OrgName:        Headquarters, USAISC
OrgId:          HEADQU-3
Address:        NETC-ANC CONUS TNOSC
City:           Fort Huachuca
StateProv:      AZ
PostalCode:     85613
Country:        US
RegDate:        1990-03-26
Updated:        2011-08-17
Ref:            http://whois.arin.net/rest/org/HEADQU-3

OrgAbuseHandle: REGIS10-ARIN
OrgAbuseName:   Registration
OrgAbusePhone:  +1-800-365-3642 
OrgAbuseEmail:  disa.columbus.ns.mbx.arin-registrations@mail.mil
OrgAbuseRef:    http://whois.arin.net/rest/poc/REGIS10-ARIN

OrgTechHandle: REGIS10-ARIN
OrgTechName:   Registration
OrgTechPhone:  +1-800-365-3642 
OrgTechEmail:  disa.columbus.ns.mbx.arin-registrations@mail.mil
OrgTechRef:    http://whois.arin.net/rest/poc/REGIS10-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/whois_tou.html
#
# If you see inaccuracies in the results, please report at
# http://www.arin.net/public/whoisinaccuracy/index.xhtml
#

目前还没有最好的方法可以通过编程方式查询此信息,因为大多数ISP会因为潜在的滥用而对您的查询量进行速率限制。还有一些网站可以提供有关IP所有者的更多信息,例如RobtexSenderBase

从上面发布的whois信息中可以看出,那里没有有用的内容。你想要阻止/ 8 CIDR(2 24 地址, 1 / 256 在IPv4空间中。)

这就是为什么特定于垃圾邮件的查找(如SenderBase)可以提供帮助的原因,因为它们可以告诉您邮件量和邮件发件人的声誉。 (但是,如果您提供的示例是真实的,则SenderBase不知道它们。)

底线:不, 可以安全地阻止您所命名的IPv4空间中的大量IP。

相关问题
最新问题