Page tree

Versions Compared

Key

  • This line was added.
  • This line was removed.
  • Formatting was changed.

In the beginning there was spamming. The spamming took place on a swedish forum, hosted by a swedish TV-channel, inspired by an international project called "Big Brother". The year was actually 2006 and trolls were highly active on this forum. In the same time, there was an irc-server that received a load of attacks by proxies.At mail spam. This kind of spam did not require very much to stop - once a mail server was sending junkmail, the sender was controlled by a DNS resolver that it was not blacklisted somewhere by the simple, as we know it, 127.0.0.X-validation. There was no need for anything else. The time passed and suddenly posting data anonymous on webforums, usenet and other form of social media via broken proxies became very popular. This DNSBL project is based on a webforum, created during the year 2006 and this is probably the first time that we, our crew, experienced hate speech on web forums which took place over anonymous proxies. The web forum itself was hosted by Kanal 5, a swedish TV-channel where discussions was mostly about the contestants in "Big Brother" that was very popular. The era of trolling was quite new born (at least at forums) and sometimes people that wanted to look bigger than they was figured out that they could clone themselves via proxies. If the haters could convince others that their fan club was bigger, they could also influence final results of their attacks. Even if there was only one person behind the hate speech.

This formed a method to stop spammer via other channels than SMTP. A part of the ongoing traffic was hosted via IRC. Checking proxies at IRC levels was quite easy, since the lookup was made once during the initial connection. At this moment, there was a project on the big internet called - BOPM (Blitzed Open Proxy Monitor) - that has special clients checking on connecting clients to that irc server. had special client to look up and check every single connection on the irc server. However, there was no proper solution for http traffic and http traffic was different to the other protocols, since lookups had to be made each time an access to the webserver was made. This also caused a very high amount of DNS traffic, even if most of the traffic was cached at the DNS point.

Tornevall Networks started to think of migrating a similar solution into web spaces. The problem, that made a huge difference between the IRC and WWW-protocol was the fact that on IRC, you made one connection and then one check against a DNS Blacklist. If it was blacklisted as an open proxy, it got k-lined, akilled in any other form: banned. This was not possible with HTTP-connections, since a check would take place each time a client connected to a website. The idea in this case, was to cache the resolving, into a local storage since DNS-servers otherwise could be overloaded with queries (depending on how DNS caching was made).Somewhere in may 2006, this project started and the first extension released was actually the rbl-extension at sourceforge, together with an extension for the CMS tool e107 and vBulletin. After this year, 2006, no more suprises happened. Only maintenance jobs. Recently someone has realized that the old projects has became quite obsolete. Deprecation of the old project from 2006 was initiated somewhere between december 2015 and june 2016, based on BOPM. So it all started with simple DNS lookups and the problem, described above, hit this service when about half of the show had went on: The more scandals that popped up in the show, the more visitors joined the forum and the hits, combined with DNS lookups, made the forum go slow. Trying to block the trolling also had a system that tried to trace the proxies back to the original poster. The idea of cache all resolving into completely local lookups created which created an extra protective layer between the web servers and the DNS servers. Once the lookup was made via the DNS resolvers, the rest of the lookups went through a local database and most of the problems disappeared.

Somewhere in then ending of may 2006, this project was initialized as an open source project and plugins was released at sourceforge for the CMS tool e107, vBulletin with stand alone code. A new era of internet abuse was about to take place.