SMTP AUTH Blocklist (AuthBL)

An SMTP Auth Blocklist is a subset of an exploit zone, listing only IP addresses of hosts which have been observed behaving as exploited members of botnets, proxies, VPNs, TOR exit nodes, and hosts that have been attempting to authenticate to our honeypots acting maliciously within the last 12 hours.

The list is used to identify account compromises and to block exploited hosts from authenticating with your services running on HTTP, IMAP, SMTP, SSH, etc., to prevent dictionary or brute force attacks or logging into services with phished credentials, etc. The listing time for this list is shorter than our other lists, to avoid false positives with IP addresses that might be rotated within a DHCP pool.

For more see Abusix Mail Intelligence – Authentication IP List (AuthBL).

Back to Glossary
Linkedin Icon Twitter Icon Facebook Icon E-mal Icon
Get in touch

Talk to us

Do you want to remove your IP/domain from one of our blocklists?
Please use our lookup-service and follow the instructions there in order to get that resolved.