Domain Abuse Contact

abusix logo

 

Abusix as known as Abuse Contact DB is a proxy database service for people who want to report network abuse directly to network owners, without getting lost in the whois databases or get rate-limited by whois server.

In order to get the domain abuse contact, you may simply use abusix free server as sample below,

Domain: abc.com
IP: 1.2.3.4

With the information above, you may simply get the information as below,

Reverse IP: 4.3.2.1

Query from your terminal,

host -t TXT 4.3.2.1.abuse-contacts.abusix.org

How to check DNSBL automatically?

PEAR::Net_DNSBL provides an easy way to check if a given Host or URL is listed on an DNS-based Blackhole List (DNSBL, Real-time Blackhole List or RBL) or Spam URI Realtime Blocklist (SURBL).

According to PEAR::Net_DNSBL manual, you may trigger PEAR::Net_DNSBL automatically to check certain IPs that needed.

First of all, you will need to install PEAR::Net_DNSBL as command below,
pear install NET_DNSBL

By referring to the sample script from PEAR::Net_DNSBL manual, I have modified the script to be able to send an email to me when found any IPs range that needed by me as below,

Continue reading How to check DNSBL automatically?

What is DNS?

What would be a DNS from your mind? DNS could be Domain Name Service or Domain Name System.

By right a domain name will referring to the DNS setting and understand which web server or server should it go and an Internet User could only able to get the page work from their Browser.

Basically, DNS could be the group in 2 major group where I will separate it to parent DNS and child DNS. With Parent DNS, it meant that the DNS of your domain name set that referring to your DNS server such as ns1.mickgenie.com and ns2.mickgenie.com.

Once the parent DNS setting up, the domain will connect to the DNS server and you will have A, CNAME, MX, TXT, and so on record to refer so the subdomain, email services and some rules called from TXT will done accordingly.

Below is some of the record available.
1. Address Record (A record),
A record normally used by an IPs only where it could resolve to 4 blocked of IP which something like 127.0.0.1 and you shall not point it to a domain base such as mickgenie.com and this will cause it not working.

2. Canonical Name (CNAME),
CNAME used a user-friendly domain name such as mickgenie.com to allow a user do not need to remember the IPs based address and this is easily for a web services to connect to different server if they have more than 1 server within the subdomain.

3. Mail Exchange(MX),
MX record used for the email services and it used to recognize if you have more than 1 email server and if you have backup email services.

4. Text (TXT),
TXT record is widely used when a DNS services contain a Sender Verify Framework(SPF) were used to protect spamming record, etc.

TXT also used when you have a domain key such as Yahoo! email services protection.

How to set OpenDNS as your Internet DNS with Windows 7

OpenDNS is widely used by the Internet user as it do come with some security protection and many more.

With Microsoft Windows 7, you may easily setup your Internet DNS with OpenDNS.

Use the following step to get your OpenDNS setting up.


1. Open your Control Panel and look for Network. Click on “Network and Sharing Center”.

2. You shall see the active network as above where Mick Genie using bogo as the network SSID and you may click on the Connections where I am using Wireless Network now.
3. Click on the Properties button.
4. Double click on the “Internet Protocol Version 4(TCP/IP4)”.

5. Select “Use the following DNS server addresses:”.
6. Insert the IP as below,
208.67.222.222
208.67.220.220

cPanel: Install SPF record with command

If you have cPanel server and wish to add SPF record in one shot, there is a command come with cPanel to allow you to done it without modify each of the DNS record.

The command line will be as below where cPanel_username should represent your cPanel’s username.

/usr/local/cpanel/bin/spf_installer cPanel_username

Example,

/usr/local/cpanel/bin/spf_installer mickgenie

It will result the DNS zone added the following line,

"v=spf1 a mx ip4:110.4.45.74 ?all"

Set SPF records for Google Apps

Nowadays, many user use Google Apps for their own domain such as mickgenie.com but they do not know Google Apps did allow them to apply SPF (Sender Policy Framework) to their email to protect spamming issue.

By using SPF records, it allow domain owners to specify which hosts are permitted to send email on behalf of their domains. Normal SMTP allows any computer to send an email claiming to be from anyone. Thus, it’s easy for spammers to send emails with forged From: addresses. SPF allows a domain owner to use a special format of DNS TXT records to specify which machines or hosts are authorized to transmit email for their domain; this makes it difficult to forge From: addresses.

To set your domain’s SPF record, you should have access to your domain’s DNS settings. On your DNS resource, publish the following TXT record: v=spf1 include:aspmx.googlemail.com ~all