這個有辦法封掉嗎?
<P>Tue 2008-08-19 00:06:42: ----------<BR>Tue 2008-08-19 00:07:56: Session 1893; child 1; thread 1992<BR>Tue 2008-08-19 00:07:37: Accepting SMTP connection from <BR>Tue 2008-08-19 00:07:37: Performing PTR lookup (103.40.163.220.IN-ADDR.ARPA)<BR>Tue 2008-08-19 00:07:37: * D=103.40.163.220.IN-ADDR.ARPA TTL=(1429) PTR=<BR>Tue 2008-08-19 00:07:37: * Gathering A records...<BR>Tue 2008-08-19 00:07:37: ---- End PTR results<BR>Tue 2008-08-19 00:07:37: --> 220 mail.<mymail>.com ESMTP MDaemon 9.6.6; Tue, 19 Aug 2008 00:07:37 +0800<BR>Tue 2008-08-19 00:07:38: <-- HELO idcseeder.com.cn<BR>Tue 2008-08-19 00:07:38: Performing IP lookup (idcseeder.com.cn)<BR>Tue 2008-08-19 00:07:38: * D=idcseeder.com.cn TTL=(2) A=<BR>Tue 2008-08-19 00:07:38: ---- End IP lookup results<BR>Tue 2008-08-19 00:07:38: --> 250 mail.<mymail>.com Hello 103.40.163.220.broad.km.yn.dynamic.163data.com.cn (may be forged), pleased to meet you</P><P> </P>
<P>Tue 2008-08-19 00:16:03: ----------<BR>Tue 2008-08-19 00:16:04: Session 1903; child 3; thread 2948<BR>Tue 2008-08-19 00:15:45: Accepting SMTP connection from <BR>Tue 2008-08-19 00:15:45: Performing PTR lookup (174.38.163.220.IN-ADDR.ARPA)<BR>Tue 2008-08-19 00:15:55: * DNS: 10 second wait for DNS response exceeded <BR>Tue 2008-08-19 00:15:55: * D=174.38.163.220.IN-ADDR.ARPA TTL=(1429) PTR=<BR>Tue 2008-08-19 00:15:55: * Gathering A records...<BR>Tue 2008-08-19 00:15:55: ---- End PTR results<BR>Tue 2008-08-19 00:15:55: --> 220 mail.<mymail>.com ESMTP MDaemon 9.6.6; Tue, 19 Aug 2008 00:15:55 +0800<BR>Tue 2008-08-19 00:15:55: <-- HELO whoisss.com.cn<BR>Tue 2008-08-19 00:15:55: Performing IP lookup (whoisss.com.cn)<BR>Tue 2008-08-19 00:15:55: * D=whoisss.com.cn TTL=(2) A=<BR>Tue 2008-08-19 00:15:55: ---- End IP lookup results<BR>Tue 2008-08-19 00:15:55: --> 250 mail.<mymail>.com Hello 174.38.163.220.broad.km.yn.dynamic.163data.com.cn (may be forged), pleased to meet you</P>
<P> </P>
<P>Tue 2008-08-19 00:16:04: ----------<BR>Tue 2008-08-19 00:16:44: Session 1904; child 1; thread 2316<BR>Tue 2008-08-19 00:16:31: Accepting SMTP connection from <BR>Tue 2008-08-19 00:16:31: Performing PTR lookup (29.36.163.220.IN-ADDR.ARPA)<BR>Tue 2008-08-19 00:16:31: * D=29.36.163.220.IN-ADDR.ARPA TTL=(1434) PTR=<BR>Tue 2008-08-19 00:16:31: * Gathering A records...<BR>Tue 2008-08-19 00:16:35: ---- End PTR results<BR>Tue 2008-08-19 00:16:35: --> 220 mail.<mymail>.com ESMTP MDaemon 9.6.6; Tue, 19 Aug 2008 00:16:35 +0800<BR>Tue 2008-08-19 00:16:36: <-- HELO globalaspnet.com.cn<BR>Tue 2008-08-19 00:16:36: Performing IP lookup (globalaspnet.com.cn)<BR>Tue 2008-08-19 00:16:36: * D=globalaspnet.com.cn TTL=(10) A=<BR>Tue 2008-08-19 00:16:36: ---- End IP lookup results<BR>Tue 2008-08-19 00:16:36: --> 250 mail.<mymail>.com Hello 29.36.163.220.broad.km.yn.dynamic.163data.com.cn (may be forged), pleased to meet you</P>
<P> </P>
<P>Tue 2008-08-19 00:17:43: ----------<BR>Tue 2008-08-19 00:18:37: Session 1906; child 1; thread 2900<BR>Tue 2008-08-19 00:18:27: Accepting SMTP connection from <BR>Tue 2008-08-19 00:18:27: Performing PTR lookup (59.92.63.218.IN-ADDR.ARPA)<BR>Tue 2008-08-19 00:18:27: * D=59.92.63.218.IN-ADDR.ARPA TTL=(1417) PTR=<BR>Tue 2008-08-19 00:18:27: * Gathering A records...<BR>Tue 2008-08-19 00:18:27: ---- End PTR results<BR>Tue 2008-08-19 00:18:27: --> 220 mail.<mymail>.com ESMTP MDaemon 9.6.6; Tue, 19 Aug 2008 00:18:27 +0800<BR>Tue 2008-08-19 00:18:27: <-- HELO aspnetnew.com.cn<BR>Tue 2008-08-19 00:18:27: Performing IP lookup (aspnetnew.com.cn)<BR>Tue 2008-08-19 00:18:28: * D=aspnetnew.com.cn TTL=(10) A=<BR>Tue 2008-08-19 00:18:28: ---- End IP lookup results<BR>Tue 2008-08-19 00:18:28: --> 250 mail.<mymail>.com Hello 59.92.63.218.broad.km.yn.dynamic.163data.com.cn (may be forged), pleased to meet you<BR></P>
<P>固定規則 broad.km.yn.dynamic.163data.com.cn</P>
<P>不規則 HELO idcseeder.com.cn whoisss.com.cn globalaspnet.com.cn aspnetnew.com.cn ...........更多 & IP</P>
<P> </P>
<P>雖然可以用HOST Screening 一個一個封鎖, 卻很費功夫</P>
<P>有辦法直接將<FONT color=red>broad.km.yn.dynamic.163data.com.cn</FONT>這段訊息直接封鎖嗎?? 謝謝</P> <P>查出 dynamic.163data.com.cn 的動態 IP 區段,然後將整個區段都封了。</P>
<P> </P>
<P>ps. 兄弟,你終於又出現啦!:) </P> <P>是的 麻吉老大</P>
<P>好久沒碰MDaemon, 重新學習中</P>
<P> </P>
<P>WHOIS 主機 : whois.cnnic.net.cn </P>
<P>Domain Name: 163data.com.cn<BR>ROID: 20070711s10011s23187457-cn<BR>Domain Status: inactive<BR>Registrant Organization: 北京三方创业网络技术有限公司<BR>Administrative Email: wangchen sfn.cn<BR>Sponsoring Registrar: 北京中科三方网络技术有限公司<BR>Registration Date: 2007-07-11 17:04<BR>Expiration Date: 2009-07-11 17:04<BR></P>
<P>ping不到它的位置</P> <P>終於找來了相關資料</P>
<P>=======================================================</P>
<P> 不少站长不知道163data.com.cn是什么,在搜索引擎上搜索也找不到几条满意的结果,但是每天有大量来自163data.com.cn的用户访问自己的网站,怕被采集或者被攻击,所以很着急。<BR><SPAN id=more-208></SPAN></P>
<P> 我之前也不知道,后来在使用一款WordPress的插件时(<A href="http://blog.yiyidu.com/archives/2008_142.html"><SPAN style="COLOR: #027ac6">装了个WordPress打分插件</SPAN></A>),得知自己的IP地址也属于xxx.dynamic.163data.com.cn的形式。所以xxx.163data.com.cn形式的IP地址,其实是每个中国电信上网用户的IP反向解析地址,中国电信之所以要把IP地址进行动态反向解析,主要是为了防止垃圾邮件,减少黑客攻击等等。</P>
<P> 本页末尾的小插件显示出了您当前的IP地址和HostName(如果看不到请稍等片刻,再按F5刷新,可能需要多刷新几次),我的HostName就是xxx.broad.xw.sh.dynamic.163data.com.cn的样子。</P>
<P> (你也可以登录<A href="http://www.ipchicken.com/" target=_blank><FONT color=#0169de>IP Chicken</FONT></A>查看自己的IP和Name Address,我登录上去后,显示了我的IP地址,和我的Name Address: xx.xx.xx.xx.broad.xw.sh.dynamic.163data.com.cn。)</P>
<P> 所以每天有大量来自163data.com.cn的访客访问网站不应该担心,而应该高兴,因为那都是通过电信网络上网的网友啊,呵呵。如果你屏蔽了163data.com.cn,那么所有电信用户都访问不了你的网站了。</P>
<P> IP地址反向解析就是服务器根据邮件信头文件显示的IP地址进行反向解析,如果反向解析这个IP所对应的域名是许可的域名,就接受这封邮件。如果反向解析发现这个IP没有对应到许可的域名,就拒接邮件。</P>
<P> 据介绍,实施动态IP地址反向解析工作可以有效防止黑客攻击和垃圾邮件、控制网络带宽、节省DNS系统资源等,有助于减少用户投诉,净化网络环境,提升网络服务质量。</P>
<P>=======================================================</P>
<P> </P>
<P>再找別的方法囉</P> 還不太了解 試著看看
頁:
[1]