First and foremost, EL is an effort to collect and classify all generic PTR / reverse DNS naming conventions currently in use, to aid in the evaluation of the risks of accepting mail from a given host. Although geared towards identifying botnets, we have many types of classification, including university residential networks, NAT/proxies, mass virtual web hosting services and mail server farms.

This dataset is available for commercial use through a licensing agreement. As of this writing, there are over 34K patterns, covering almost 19K domains worldwide. We license to antispam appliance vendors and reputation services companies, and are working with antivirus vendors, ISPs and telcos, and enterprise infrastructure software companies.

Enemieslist data is made available via a custom DNSBL service, hosted on a patched rbldnsd, which uses a custom fast regular expression library and returns a variety of responses to DNS queries. This data is not currently available for public use, although we are exploring the possibility of making it available in the future.

Want to host a rbldnsd mirror?

Enemieslist is also an antispam package for sendmail, currently in closed beta testing, with experimental contributed versions for Postfix (in the form of several downloadable files and a policy daemon), Exim (in the form of several downloadable files), and qpsmtpd (in the form of a plugin, available in the public qpsmtpd svn repository), with an experimental version for SpamAssassin coming soon. All software made available is open source.

For access to the rbldnsd patch, fast regex parsing library, and other tools, send us an email.

We host several mailing lists for the users of our software and data, as well as for discussion of antispam techniques and other relevant information. To request access to the latter, please contact the list owner.

Finally, Enemieslist is a blog where we post a wide variety of antispam and security related news items. It has an RSS feed for your convenience as well.