Ask Slashdot: Should I Publish My Collection of Email Spamming IP Addresses?

An anonymous reader writes: I have, for a while now, been collecting IP addresses from which email spam has been sent to, or attempted to be relayed through, my email server. I was wondering if I should publish them, so that others can adopt whatever steps are necessary to protect their email servers from that vermin. However, I am facing ethical issues here. What if the addresses are simply spoofed, and therefore branding them as spamming addresses might cause harm to innocent parties? What if, after having been co-opted by spammers, they are now used legitimately? I wonder if there's a market for all the thousands of webmail addresses that send Slashdot nothing but spam.

What sort of a question is this?

[ma++i+ude]

As is, nobody cares about your list. Use an adaptive blacklist and join Project Honey Pot.

Publish your own, or join in

There are hundreds of blacklists out there: https://mxtoolbox.com/problem/blacklist/

Go talk to Spamhaus

[Penguinisto]

No, really, go talk to them... they've been doing just that as a community for a lot longer, and probably have nearly all the stuff on your list and then some.

How often are the addresses re-validated?

[QuietLagoon]

If you publish a list, you then obligate yourself to keep that list up-to-date, not only by adding new addresses, but also by removing old addresses that no longer spam.

.
Many, many spamming IP addresses are hijacked hosts that are cleaned up eventually. Are you planning to ban those IP addresses permanently?

So I ask the question, how frequently do you plan top re-validate the addresses that are on your list as still spamming?

Please no

[silas_moeckel]

If you think you can spoof a TCP connection you have no business running a RBL.

Re:Someones new to the internet...

Someone who doesn't know the existence of official blacklists really shouldn't be running a mail server.