Home / Blogs

Response Policy Zones (RPZs): Use as a Blocklisting Process

Gradually it seems the word is spreading about a new blocking methodology to interrupt the ability of end users to click and visit phishing sites—thereby having their personal information/credentials at risk. This is the DNS Response Policy Zones.

DNS RPZs allows companies that run recursive resolvers to create a zone that will not resolve specific domains. This is a second layer of filtering, and if a spammer manages to send an illegitimate email message with a malicious link into an end user’s email address’ inbox, then an ISP can still protect the end user from becoming a victim from the phish attempt. For deeper insight into RPZ, feel free to check out the helpful slides published by the ISC.

Two blocklists recently announced that they’re publishing lists in RPZ format so ISPs can import the data into their DNS recursive resolver. One of them is Spamhaus, who is currently running a beta for the DBL in a RPZ format. If you’re a current user of the SpamHaus DBL product, reach out to Spamhaus about checking out their new format. There’s also a news article on this.

The other is SURBL, who’s currently offering their list as RPZ.

Culled from:
Laura Atkins’s Word to the Wise blog
A Spamhaus news article

By Udeme Ukutt, Postmaster at Wish

Filed Under


Comment Title:

  Notify me of follow-up comments

We encourage you to post comments and engage in discussions that advance this post through relevant opinion, anecdotes, links and data. If you see a comment that you believe is irrelevant or inappropriate, you can report it using the link at the end of each comment. Views expressed in the comments do not represent those of CircleID. For more information on our comment policy, see Codes of Conduct.

CircleID Newsletter The Weekly Wrap

More and more professionals are choosing to publish critical posts on CircleID from all corners of the Internet industry. If you find it hard to keep up daily, consider subscribing to our weekly digest. We will provide you a convenient summary report once a week sent directly to your inbox. It's a quick and easy read.

I make a point of reading CircleID. There is no getting around the utility of knowing what thoughtful people are thinking and saying about our industry.

Co-designer of the TCP/IP Protocols & the Architecture of the Internet




Sponsored byVerisign

Domain Names

Sponsored byVerisign

New TLDs

Sponsored byRadix

Brand Protection

Sponsored byCSC

IPv4 Markets

Sponsored byIPv4.Global

Threat Intelligence

Sponsored byWhoisXML API