Should providers use the XBL to block their own users?
Back
Should providers use the XBL to block their own users?
Providers should not use the XBL to block their own users, or to deny access to web-forums, journals or blogs.
- If the same hosts are used for both incoming email and outgoing (smarthosted) email, connections using SMTP authentication should be exempted from XBL checks.
- End users are often on dynamic IP addresses: a user may be assigned an IP address from their provider that is listed in the XBL because of the situation of a previous user of that IP address.
- The XBL can be used to alert an ISP’s security department when a user’s IP is in the XBL, but should only be used as an “informational” alert.