What is an Email Blacklist?

Definition

An email blacklist, also called a blocklist, is a list of known bad senders. It records IP addresses, sending domains and sometimes the domains found inside message content that a blocklist operator has identified as a source of spam, malware or other abuse. The list exists so that receiving mail systems can refuse mail from those senders.

The term you will see most often is DNSBL, which stands for DNS-based blocklist. An older name for the same idea is RBL, for realtime blackhole list or realtime blacklist. DNSBL is the more precise modern term, and the two are used to mean roughly the same thing: a blocklist that a mail server queries over DNS.

It is worth separating two kinds of list. A public blocklist such as those run by Spamhaus or SpamCop is operated by an independent organisation, and many receiving servers consult it. A provider-internal reputation system, run inside Gmail or Microsoft, is not a public list at all but a private judgement each provider keeps about each sender. Both can stop your mail. This page focuses on the public, queryable blocklist, the kind a sender can be listed on and removed from.

How It Works

The mechanics of a blacklist are built on DNS, the same system that turns domain names into addresses. This is what makes a blocklist check fast enough to happen on every incoming message.

When a receiving mail server gets an incoming connection, it takes the sending IP address and makes a DNS query against the blocklist. The query is structured so the answer tells the server whether that IP is listed. A listed answer can also carry a return code that indicates why the IP was listed, since a single combined list may cover several categories of problem. The whole lookup completes in milliseconds, so the receiving server can decide before the message body has even arrived whether to reject the connection, quarantine the message or let it through.

Spamhaus is the most widely used operator and is a useful example of how a blocklist is structured. It runs several distinct lists, each for a different cause. The SBL covers known spam sources, the XBL covers exploited and compromised machines, the PBL covers IP ranges that should not be sending mail directly, and the CSS covers a specific class of spam sources. Spamhaus combines the IP-based lists into a single list called ZEN, so that one DNS query returns the same information as querying each list separately, using fewer resources. Spamhaus also runs the DBL, a domain blocklist that flags bad domains rather than IPs.

Senders land on a blocklist for reasons that almost always trace back to sending behaviour. A spike in spam complaints, a high bounce rate, a sudden unexplained jump in volume, an account compromised and used to send spam, or hitting spam traps can all trigger a listing. Different lists have different sensitivities, and a sender may be on one list while clean on others.

Why It Matters for Email Deliverability

A blacklisting matters because it can stop your mail at the door. When a receiving server queries a blocklist and gets a listed answer, it may reject the message entirely, so it never reaches the recipient and you get a bounce. Even where the message is accepted, a blocklist hit is a strong negative signal that pushes the message toward the spam folder. A single listing on a widely consulted blocklist can cut into deliverability across many recipients at once.

Getting off a blacklist is harder than getting on it. The first and non-negotiable step is to fix the root cause. If a compromised account was sending spam, secure it. If a dirty list drove complaints and bounces, clean it. Only then should you approach the delisting process. Some blocklists remove an entry automatically once the bad activity has stopped and a waiting period has elapsed. Others require a manual removal request. Major operators such as Spamhaus typically process removals within 24 to 72 hours, though complex or repeat cases can take longer. Requesting removal before fixing the cause tends to make the listing worse, because the operator sees the abuse continuing. It is also worth knowing that Spamhaus does not accept payment to expedite a removal, so any service offering a paid fast track is not legitimate.

This is where verification connects directly to blacklists. Two of the most common triggers for a listing, a high bounce rate and spam trap hits, are both produced by sending to addresses that should never have been mailed. Invalid addresses bounce. Recycled spam traps are dead addresses that look completely ordinary on a list. Verifying a list before a send removes the invalid addresses and reduces the chance of hitting a recycled trap, which closes off the most common path to a blacklisting before mail ever goes out.

How VeriMails Handles It

VeriMails is not a blocklist and does not maintain one. It is an email verification service, and its role in the blacklist problem is prevention: removing the bad addresses that lead senders onto blocklists in the first place, before any campaign is sent.

Every address verified by VeriMails runs through the full verification chain: syntax validation, DNS and MX record checks, a live SMTP handshake against the recipient mail server, catch-all detection, disposable email detection and role-based detection. The SMTP handshake identifies the invalid addresses that would otherwise hard bounce, and a high bounce rate is one of the clearest triggers for a blocklisting. Removing undeliverable and risky addresses before a send also lowers the chance of mailing a recycled spam trap, which can result in a direct listing.

Verification runs before the send through the REST API for real-time checks or through a bulk CSV upload for a whole list, with clear deliverability categories for campaign decisions. VeriMails performs catch-all detection rather than scoring, so a catch-all domain is reported plainly. Verification is billed per address from credits, starting at $0.0019 per email with 10,000 credits costing $19, and subscriptions starting at $15 per month. Every account begins with 100 free credits on signup, with no credit card required and credits that never expire, so a list can be cleaned before it puts a sending reputation at risk.

Frequently Asked Questions