Is it typical for Linode to issue IPs to new clients where the IP is blacklisted?
For other potential clients looking to move here, make sure, in advance, that the addresses provided are clean. Almost all other providers do that before issuing a node for clients.
So my question to Sales is: Is it normal to issue IPs that are known to be blacklisted?
10 Replies
> Almost all other providers do that before issuing a node for clients
lol no they don't. Providers mitigate blacklists by keeping out fraudulent customers or shutting them down as soon as they begin abusing resources. No one gets this right 100% of the time, it's simply not possible. If you go and generate enough machines on any equivalent provider (DO, Vultr, etc) I assure you you'll receive an IP listed on some blacklist. In the last couple of years Linode has become much better at keeping this kind of stuff out, but every provider gets an IP blacklisted at some point.
So no, it isn't typical to receive a blacklisted IP but it is indeed possible, if somewhat rare. You should check the IP before going and building out your email server or whatever - if it's listed, just create a new machine or request an IP swap. Linode does go through its listed IPs and handle the delisting process, but as anyone who has dealt with blacklists can tell you, that process can take some time.
@dubidubno:
It would be fairly easy to script a check against common blacklist before assigning an IP to a customer. Doesn't Linode do this?
There are hundreds of blacklists with varying agendas - which ones get to determine whether an IP is assignable or not? I don't think it is feasible to ensure that a customer never gets assigned an IP address that is on some sort of blacklist.
While not the same, there is a similar thing being done with blacklists (like spamcop), that submit instant data back to email providers, so offending accounts are quickly deleted.
Moreover, having done this work for Linode in the past, I can assure you that the blacklist owners don't care to help, much less allow you to build your own automated back channel to delist your IPs. This is antithetical to their goal (at least the goal of legitimate ones) which is to ensure that the spam / abuse in question has been carefully mitigated.
It's always "not too much effort" when you don't know what you're talking about and you're not the one responsible for implementing it.
People have built bigger and more complex things than that, the rest is just excuses.
As I mentioned before, SBLs do not have an interest in allowing VPS providers some sort of back channel / automatic delisting process. It would be negligent on their part really, as there's the potential that the hosting provider could then abuse that privilege to delist addresses that are still sending spam. Should Linode raise their prices to pay off UCEPROTECT because some stupid administrators use it?
If you can point to a single Linode-equivalent provider that actually does what you're talking about I'll shut up.
@mcintosh:
@dubidubno:It would be fairly easy to script a check against common blacklist before assigning an IP to a customer. Doesn't Linode do this?
There are hundreds of blacklists with varying agendas - which ones get to determine whether an IP is assignable or not? I don't think it is feasible to ensure that a customer never gets assigned an IP address that is on some sort of blacklist.
That's why I used the qualifier common.
Does Linode check any blacklists before assigning an IP address to a customer?