Jump to content

Ironport and Roving.com


Recommended Posts

This is very interesting.

We have blocked roving.com on our servers for a long time due to spam from them that we never requested. For those that don't know they are an Ironport bonded sender.

Looks like they got themselves into Sorbs for spamming: http://www.dnsbl.sorbs.net/cgi-bin/lookup?IP= for sending spam to spamtraps. I am not sure how they explain those to Ironport but they remain a non spamming bonded sender.

Now it looks like Spamhause has reactivated their record:

A snippet from Spamhaus

<start snippet>

"Spamming to spamtraps for Berklee Music. Not only did the spammed spamtrap never opt in, it was actually *opted out* from their lists well over a year ago...several times...but continually spammed over and over.

Dirty lists - opt-outs keep getting re-added over and over and over again... It's time to permanently opt-out Roving software as a whole to solve this problem with continual spamming."

<end snippet>

Their record looks terrible, more here: http://www.spamhaus.org/sbl/sbl.lasso?query=SBL5133

This one will be fun to follow as they can surely not be in these spam lists and Ironports Boneded Sender whitelists at the same time.

Link to comment
Share on other sites

Was just doing some catching up over in NANAE and note that this isn't the only oufit that seems to be straddling both sides of the fence, paying the fees for the Bonded Sender thing yet still listed on various bad-boy spam lists .. very strange ..

Link to comment
Share on other sites

I wonder when Ironport will see their true colors?

They are also listed in:

WSFF, open relays and more: will-spam-for-food.eu.org ->


INTERSIL lists...spammers...who have pestered users at Intersil: blackholes.intersil.net -> roving.com.spam.blackholes.intersil.net. ->


2003Jan02; pnap.net

Roving Software Inc./Constant Contact

idiots actually spammed blockme[at]relays.osirusoft.com

2002Jan13; 208.198.98/27 uunet

2002Jan13; pnap

2002Oct30; genuity

SPAMBAG Spambags: blacklist.spambag.org -> pnap.blacklist.spambag.org. ->


Blocked - see http://www.spambag.org/cgi-bin/spambag?mailfrom=pnap

JAMDSBL local bl at JAMMConsulting.com: dnsbl.jammconsulting.com ->

AHBL The Abusive Hosts Blocking List: dnsbl.ahbl.org ->

1067181843 (Sun Oct 26 16:24:03 2003) bruns - spam Source - - roving.com

ISIPPIADB ISIPP Accreditation Database: iadb.isipp.com -> -> -> -> ->

ISIPPIADB2 ISIPP Accreditation Database different return type: iadb2.isipp.com ->

KROPKAALL Quite aggressive database, maintained by a few private persons: all.rbl.kropka.net ->

KROPKAIP kropka ip: ip.rbl.kropka.net ->

SORBS spam and Open Relay Blocking System: Aggregate zone: dnsbl.sorbs.net ->

spam Received See: http://www.dnsbl.sorbs.net/lookup.shtml?

SORBSSPAM List of hosts that have been noted as sending spam/UCE/UBE to the admins of SORBS. : spam.dnsbl.sorbs.net ->

spam Received See: http://www.dnsbl.sorbs.net/lookup.shtml?

SORBSSPEWS-L1 spam Prevention Early Warning System - Level 1 Mirror: l1.spews.dnsbl.sorbs.net ->

! [1] roving/constantcontact, see http://spews.org/ask.cgi?S1641

SORBSSPEWS-L2 spam Prevention Early Warning System - Level 2 Mirror: l2.spews.dnsbl.sorbs.net ->

! [1] roving/constantcontact, see http://spews.org/ask.cgi?S1641

DNSBLAUT1 Reynolds Technology Type 1: t1.dnsbl.net.au -> See http://dnsbl.ahbl.org/ and http://dnsbl.net.au/lookup/?ip=

see http://dnsbl.net.au/rmst/ and http://dnsbl.net.au/lookup/?

DNSBLAURMST dnsbl.net.au Multiple spam Traps: rmst.dnsbl.net.au ->

see http://dnsbl.net.au/rmst/ and http://dnsbl.net.au/lookup/?

DNSBLAUSPEWS spam Prevention Early Warning System: spews.dnsbl.net.au -> See http://spews.org/ and http://www.dnsbl.net.au/spews/

DRBL-VOTE-GREMLIN Distributed RBL node: gremlin.ru: vote.drbl.gremlin.ru ->

spam source

DRBL-WORK-GREMLIN Distributed RBL node: gremlin.ru: work.drbl.gremlin.ru ->

vote.drbl.gremlin.ru[at]ns.gremlin.ru:spam source

BUSSPEWS spam Prevention Early Warning System: spews.blackholes.us ->

[1] roving/constantcontact, see http://spews.org/ask.cgi?S1641

Link to comment
Share on other sites


This topic is now archived and is closed to further replies.

  • Create New...