In message <20141125005124.0c4bf243a...@rock.dv.isc.org>, Mark Andrews writes:
>
> In message , Randy Epstein writes:
> > On 11/24/14, 7:16 PM, "George Herbert" wrote:
> >
> > >
> > >He didn't hack the registry, he hijacked its records. And this is far
> > >from the first time a registry accoun
In message , George Herbert
writes:
> > On Nov 24, 2014, at 4:18 PM, Randy Epstein
> wrote:
> >
> > Actually, he didnât hack its records either. He exploited a bug in
> BIND.
>
>
> ...returned a legit response plus a tacked-on glue record for
> www.internic.net anytime you queried his nameser
On 11/24/14, 7:51 PM, "Mark Andrews" wrote:
>
>In message , Randy Epstein writes:
>> On 11/24/14, 7:16 PM, "George Herbert" wrote:
>>
>> >
>> >He didn't hack the registry, he hijacked its records. And this is far
>> >from the first time a registry account was hacked. But, yeah, *still*
>> >n
It's pretty easy to roll out a Nagios box that checks on your domains,
NS results and SSL status.
On Mon, Nov 24, 2014 at 4:20 PM, Miles Fidelman
wrote:
> Jay Ashworth wrote:
>>
>> In light of the CL domain hijacking, it seems like a good time to ask
>> if everyone has an inventory system that ke
In message , Randy Epstein writes:
> On 11/24/14, 7:16 PM, "George Herbert" wrote:
>
> >
> >He didn't hack the registry, he hijacked its records. And this is far
> >from the first time a registry account was hacked. But, yeah, *still*
> >not secure enough.
>
> Actually, he didnât hack its rec
> On Nov 24, 2014, at 4:18 PM, Randy Epstein wrote:
>
> Actually, he didn’t hack its records either. He exploited a bug in BIND.
...returned a legit response plus a tacked-on glue record for www.internic.net
anytime you queried his nameserver, which he tricked people into doing with
mixt
On 11/24/14, 7:18 PM, "George Herbert" wrote:
>And that was July 1997 not 96, though that does nothing to make me feel
>younger ...
http://archive.wired.com/politics/law/news/1997/07/5325
Yep. He did it to one of my domains (besides internic.net).
>George William Herbert
>Sent from my iPhone
Jay Ashworth wrote:
In light of the CL domain hijacking, it seems like a good time to ask
if everyone has an inventory system that keeps track of all the details
(including renewal dates) for their domain registy and SSL certificate
accounts.
If you use a tool to keep track of this, which one?
And that was July 1997 not 96, though that does nothing to make me feel younger
...
George William Herbert
Sent from my iPhone
> On Nov 24, 2014, at 4:16 PM, George Herbert wrote:
>
>
> He didn't hack the registry, he hijacked its records. And this is far from
> the first time a registry ac
On 11/24/14, 7:16 PM, "George Herbert" wrote:
>
>He didn't hack the registry, he hijacked its records. And this is far
>from the first time a registry account was hacked. But, yeah, *still*
>not secure enough.
Actually, he didn’t hack its records either. He exploited a bug in BIND.
>George W
Xymon has a built in test to check SSL cert expiration.
Josh Luthman
Office: 937-552-2340
Direct: 937-552-2343
1100 Wayne St
Suite 1337
Troy, OH 45373
On Nov 24, 2014 7:14 PM, "Jay Ashworth" wrote:
> In light of the CL domain hijacking, it seems like a good time to ask
> if everyone has an inven
He didn't hack the registry, he hijacked its records. And this is far from the
first time a registry account was hacked. But, yeah, *still* not secure enough.
George William Herbert
Sent from my iPhone
> On Nov 24, 2014, at 2:17 PM, Randy Epstein wrote:
>
>> On 11/24/14, 5:08 PM, "Michael
In light of the CL domain hijacking, it seems like a good time to ask
if everyone has an inventory system that keeps track of all the details
(including renewal dates) for their domain registy and SSL certificate
accounts.
If you use a tool to keep track of this, which one?
Do you have things set
On 11/24/14, 5:08 PM, "Michael T. Voity" wrote:
>I hate to say this, But I think that Network Operators have not see the
>last of of this DNS Hijacking. Craigslist might have been a test to see
>how far they could get and how long it would take for it to be
>discovered. I hope the FBI and the o
It still seems broken in some areas. Mail is bouncing from Hotmail to
craigslist.
On Mon, Nov 24, 2014 at 5:08 PM, Michael T. Voity wrote:
> I hate to say this, But I think that Network Operators have not see the
> last of of this DNS Hijacking. Craigslist might have been a test to see how
> far
I hate to say this, But I think that Network Operators have not see the
last of of this DNS Hijacking. Craigslist might have been a test to see
how far they could get and how long it would take for it to be
discovered. I hope the FBI and the other Federal agencies out there
are involved with
On Monday, November 24, 2014 10:08:11 PM Chris Costa wrote:
> Is there a BCOP (or substantiated opinion) for
> negotiating eBGP Graceful-Restart and Graceful-Restart
> Helper-Mode with external networks? Implementation looks
> varied across a few larger transit providers, and in
> some cases imple
Is there a BCOP (or substantiated opinion) for negotiating eBGP
Graceful-Restart and Graceful-Restart Helper-Mode with external networks?
Implementation looks varied across a few larger transit providers, and in
some cases implemented inconsistently within the same provider. Seeing
most IX peers w
On 11/23/2014 11:20 AM, joel jaeggli wrote:
> Their grasp of load-balancing seems a
> bit shallow also.
Are there discussion/guidance papers that one can point to, to improve
the depth of understanding, or at least get better configuration
choices? (Those are independent points of improvement...
On 11/24/2014 08:41 AM, Alain Hebert wrote:
> Well,
>
> NetSol?
>
> Is it just me or they came up a few times lately (past year) in high
> profil case of DNS Hijacking?
>
Someone was kind enough to break into one of my domains at Register.com
-- and to their credit Register.com dete
Well,
NetSol?
Is it just me or they came up a few times lately (past year) in high
profil case of DNS Hijacking?
On 11/23/14 23:06, Mehmet Akcin wrote:
> yes it's been hijacked thru registrar level and someone was able to change
> name servers, now it's back to normal but you will ne
Thanks to everyone for your input on our less than desirable BGP situation.
I do want to make sure I add that the state network we are a part of serves
everything from elementary schools, to universities. to the traffic cameras on
the interstate.Many of these are in rural locations and in
> Probably a good time to remind folks of HTTPS everywhere plugin for
> Chrome and Firefox :-)
what? and deter natural selection?
i have hope for this really being improved next year
https://www.eff.org/deeplinks/2014/11/certificate-authority-encrypt-entire-web
randy
Probably a good time to remind folks of HTTPS everywhere plugin for Chrome and
Firefox :-)
Cheers,
Harry
On Nov 24, 2014 1:04 AM, Christopher Morrow wrote:
>
> On Sun, Nov 23, 2014 at 11:51 PM, Randy Bush wrote:
> > and what tasty things did the hijacker's web site serve?
>
> probably not mu
24 matches
Mail list logo
