ScotNet Cloud Hub
• Self-hosted services
• Synology-inspired control

DNSBL Transparency

Fair warnings. Clear reasons. Time-limited enforcement. No drama.

What this is

bl.scott.ovh is a DNS-based blocklist used to reduce abuse against ScotNet services (mail, contact forms, web endpoints, and infrastructure). The goal is simple: keep services stable for legitimate users, and make automated abuse expensive.

This page explains the process and provides a self-check lookup. It does not publish a scrapeable “full list” of blocked IPs because that turns security telemetry into permanent internet litter.

Fair & just process

  • Evidence-based: listings are triggered by security logs and threshold rules (not vibes).
  • Proportional: temporary blocks are preferred; escalation happens only with repeated abuse.
  • Explainable: reason codes describe what was observed.
  • Reversible: listings expire or can be removed when the abuse stops and risk drops.

What gets listed

Listings are based on behaviour observed from a network address (an IP). Examples:

  • Repeated authentication failures / brute force attempts
  • Exploit scanning and known malicious probing patterns
  • Contact form spam or automated submission attempts
  • Mail abuse patterns (where applicable)
Important: An IP address is not a person. It’s a network identifier that can represent a home, an office, a VPN exit, a mobile carrier gateway, or compromised devices.

Listing lifecycle

First event
log evidence
Abuse is detected
Threshold
rule trigger
Rate/score crosses limit
Enforcement
block/list
Service protects itself
Expiry
auto decay
Stops when risk drops

Typical listings are temporary and expire automatically unless the behaviour repeats. Persistent abuse may extend a listing duration.

Reason codes

These are examples. The exact code may vary by subsystem.

CodeMeaning
WEB_BRUTEFORCERepeated auth failures or password guessing.
WEB_EXPLOIT_SCANExploit probes / known bad request patterns.
FORM_SPAMAutomated form submissions, link spam, or bot behaviour.
SMTP_AUTH_ABUSEAbusive SMTP auth attempts (where applicable).
MALICIOUS_BOTHigh-confidence malicious automation.

Self-check lookup

Enter an IPv4 or IPv6 address to see whether it is listed on bl.scott.ovh. If a reason TXT is published for the entry, it will be shown.

Tip: visit this page from the network you want to test and use your external IP.

Delisting

If you believe you were listed in error, you can request a review. Delisting decisions are based on the underlying evidence and whether the behaviour has stopped.

  • Best fix: stop the abusive behaviour at the source (compromised host, misconfigured scanner, etc.).
  • Then: use the DNSBL portal for guidance and delist options.
Open DNSBL portal

Privacy

This page discusses IP reputation in the context of security enforcement. For broader privacy principles across ScotNet services, see the main policy.

ScotNet privacy policy