The list of RBL candidates is created automatically on the basis of incoming spamtraps and addresses in the domain, which is detected by spam filters.

There are several reasons for being assigned to the RBL IT Centre:

  1. sending spam –the mail filtering system and sending a message to the address of spamtrap (so-called spam traps) decide what is classified as spam. A computer may send spam without the user’s knowledge or awareness. In this case, the computer has become a so-called zombie and part of the botnet.
  2. virus distribution,
  3. open-proxy – i.e. having a poorly configured service, e.g. squid proxy, which allows unauthorized persons to use this server as an intermediary server in connection to another machine,
  4. sending false virus notifications – the so-called avid administrator virus. Often, the default settings of anti-virus programs that scan e-mail send a notification on the detected virus to the sender. The vast majority of worms/viruses are sent using a false sender. Therefore, such notifications are completely useless and generate only unnecessary network traffic.
  5. rfc-ignorant – e-mail standards existing on the Internet require, for example, having an abuse account / alias where one may send reports regarding security breaches. No such addresses may end up being added to the RBL.