👋 How can we help you?

FAQ

Frequently Asked Questions

What is an email blocklist?

A DNS real-time blocklist (blacklist) contains a list of unsafe items seen in DNS traffic. Blocklists are used in network security architecture in real-time to mitigate abuse of APIs, DNS, communications, email, and identity. Directory servers, DNS servers, firewalls, gateways, messaging servers, and web proxies are examples of systems that use blocklists.

Who should use a DNSRBL email blocklist?

Our plug-and-play DNS email blocklists benefit anyone who operates an on-premise mail server or uses a single-tenant 3rd party cloud email service.

Using a well-designed DNS email blocklist suite, email servers can quickly reject unsafe messages when unsafe DNS resources are identified. This saves processing overhead, maximizes user mailbox safety, and helps identify compromised users and bad actors on the platform.

How can Abusix Mail Intelligence benefit me if I already have an existing email security solution?

Abusix Mail Intelligence catches over 99.6% of malicious traffic during the initial inbound connection, usually in less than a second. As the first line of defense for your mail servers, it protects your users from spam, scams, phishing, and malware.

In addition, Abusix Mail Intelligence:

  • Saves CPU overhead, leading to significant scaling gains
  • Reduces hardware requirements
  • Integrates with most email servers, spam filters, and security solutions.

I’m using Google Workspace or Microsoft 365. Can I use a DNS email blocklist?

If you run an email gateway in front of Google Workspace or Microsoft 365 and have your domain's MX records pointing to these gateways, you can use blocklists upstream of Google or Microsoft.

Should I use more than one blocklist?

Having accurate, reliable, and well-supported email filtering is crucial for its effectiveness.

If you are considering switching vendors but are still unsure, take a look at our Comparison Tool Overview to let you compare our effectiveness.

Are DNSRBL email blocklists used on inbound email?

Using a DNS email blocklist suite with your inbound mail server can block bot traffic, spam, phishing, and malware from reaching your users. More than 99.6% of malicious traffic can be bounced before it reaches your content filtering stage. Real-time lists within the suite can also help your content filters recognize other content, such as domains used in URLs and short and disk storage URLs that change regularly.

By bouncing spam, phishing, and malware that has already been identified in DNS early in the message receipt lifecycle, you can reduce your mail server resource overhead, storage, and user risk. Furthermore, by removing general messaging noise, you can focus your content filtering efforts on identifying more precisely targeted malicious message content aimed at your organization and its users.

Abusix Mail Intelligence blocks inbound mail during the (a) TCP/IP connection, (b) SMTP session, and (c) content evaluation cycle. By using Abusix Mail Intelligence, mailbox providers can dramatically reduce user security risks and messaging overhead.

Are DNSRBL email blocklists used on outbound email?

Using a DNS email blocklist suite with your outbound mail server can help you identify users with compromised systems early on during the authentication stage of sending emails. Real-time DNS lists can also help your outbound email server recognize domains, short URLs, and disk storage resources associated with compromised accounts and bad actors, reducing the likelihood that your mail server will become blocklisted.

By identifying users associated with compromised systems and accounts, you can issue an immediate password reset to the user and warn them of the hazard on their machine, thereby preventing bots from using the user's password and sending malicious emails. If the user is a bad actor, they will tire from resets and move on to other resources. Additionally, you can reduce the likelihood that your server will be blocklisted for these users.

Abusix Mail Intelligence blocks outbound mail during the authentication session and content evaluation cycle. By using Abusix Mail Intelligence, mailbox providers can dramatically reduce compromised accounts and blocklistings.

What lists does the Abusix Mail Intelligence blocklist suite contain?

The Abusix Mail Intelligence DNS blocklist suite consists of twelve Production and four Beta Zones (or lists). Each list is optimized for specific use in inbound or outbound email and during a different stage of the messaging lifecycle (connection, authentication, SMTP dialog, and content evaluation).

see Production Zones and Beta Zones

What standards does Abusix Mail Intelligence follow?

Abusix follows the IETF standard RFC-5782 “DNS Blacklists and Whitelists” and M3AAWG “Best Current Practices For Building and Operating a Spamtrap”.

Can I try Abusix Mail Intelligence?

Of course! - Just sign up on https://app.abusix.com/signup and start using the service, up to 5000 queries per day are free.

Can we have a local mirror of the Abusix Mail Intelligence blocklist suite via RSYNC?

Yes, we only provide RSYNC at an additional fee to large mailbox providers.

If you are interested in using RSYNC, please get in touch with us during your trial at support@abusix.com

Learn more about Abusix Mail Intelligence

 

Send us a message

Having trouble with your setup or a technical issue? Get in touch with our team of Abusix experts.

Click the chat button at the bottom and send us your questions. Alternatively, you can email us at support@abusix.com

 

also, follow our LinkedIn Channel for updates & subscribe to our YouTube Channel for the latest Abusix how-to-videos.

 
Did this answer your question?
😞
😐
🤩