$ dig +short www.mitsubishicars.com 126.96.36.199 $ dig +short -x 188.8.131.52 report.mitsubishicars.com. $ dig +short report.mitsubishicars.com mitsubishicars.com.d1.sc.omtrdc.net. 184.108.40.206 220.127.116.11 18.104.22.168
Which results in the rule:
www.mitsubishicars.com 4F_2 ← 22.214.171.124/32 3FD19 ← report.mitsubishicars.com 2F_1 ← *.omtrdc.net 1F_7904 ← (first-party rule) 0F_28
Maybe we can find a way to not include those false-positives.
We can skip RDNS data altogether, which only removes <<4090 hostnames (<<745 in -only). I say << because of #14 and the fact it has not rerun yet. If the real numbers are significantly low, this might be not worth it.