SURBL

SURBLs (no longer an acronym) are lists of Uniform Resource Identifier (URI) hosts, typically web site domains, that appear in unsolicited messages. SURBLs can be used to search incoming e-mail message bodies for similar sites to help evaluate whether the messages are unsolicited. For example, if http://www.buypillswithoutprescription.com is blacklisted, then e-mail messages with a message body containing this URI may be classified as unsolicited. SURBLs differ from prior DNSBLs, which commonly list mail sending IP addresses. SURBLs are a specific instance of the general URIBL list type. URIBL.com is a different, unrelated URIBL-type list.

Criticism

SURBL.org claims overall false positive rates between 0.001% to 0.05%.^[1] However, one list in particular, ob.surbl.org,^[2] uses not spam reports, but content analysis rules, combined with the age of the domain. Critics believe this unjustly punishes legitimate startups and SMEs, many of whom will be unaware of the problem and have their email capabilities restricted with no knowledge of how to solve the problem, or even that it is occurring.^[3][4]

SURBL.org seems to be an outfit based in Hollywood, CA. There is no information as to who owns / and or runs this outfit to the interested public. This causes reason for concern as to the legitimacy of this outfit (unknown if it can even be called a company), and if they are not arbitrary targeting individuals or small businesses in order to sell a list to providers.It has been suggested that one should contact ones email provider objecting strongly to such practices unless the provider of such list is a legitimate entity that can be contacted, as opposed to I.e. Spamhaus that lists it's offices and contact information.

Response to Criticism

The above criticism appears to claim an internal knowledge of a blacklisting process which would probably not be visible to the critic. For example, the ob.surbl.org list does make indirect use of user reports, but with extensive filtering. The blacklisted domain was apparently quickly removed from the blacklist as result of the critic following the clearly and prominently published removal instructions.^[5] Therefore it would appear that SURBL makes a good effort to remove legitimate sites.

The most likely reason for the blacklisting is that messages from the Yahoo Groups referenced^[6] were gatewayed to email and reported as spam by some of Outblaze's 40+ million mailbox users. Outblaze is a Chinese company.

See also

• DNSBL, a spam prevention method in which e-mail messages are accepted or rejected depending on the IP address of the mail server from which the message is received

References

1. surbl.org
2. ob.surbl.org
3. "A New Type Of Realtime Blocklist: The SURBL". Slashdot. http://yro.slashdot.org/article.pl?sid=04/04/12/1956252&mode=thread&tid=111&tid=126&tid=95. 
4. "MyLinkedinPowerForum". Yahoo! Groups. http://tech.groups.yahoo.com/group/MyLinkedinPowerForum/message/31506. 
5. surbl.org
6. groups.yahoo.com

External links

• Official website
• uribl.com
• antispam.imp.ch
• dnsbl.invaluement.com