[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

watch your domain

Subject: watch your domain
From: eric.kuhnke at gmail.com (Eric Kuhnke)
Date: Wed, 5 Sep 2018 17:03:25 -0700
In-reply-to: <[email protected]>
References: <[email protected]>

https://medium.com/@gszathmari/hacking-law-firms-abandoned-domain-name-attack-560979e0b774

tl;dr: Expired domain names re-registered by malicious actors after the
redemption period are useful for all sorts of mischief.

This is a pretty easy to understand read for non-technical management types
at customer organizations, who might not understand the importance of how a
domain name and its authoritative DNS server records are the single point
of failure under a lot of important stuff.

On Tue, Sep 4, 2018 at 11:42 AM Randy Bush <randy at psg.com> wrote:

> tl;dr: control the domains you use
>
> the domain rain.net was on since the early '90s.  it used to be the
> domain of the isp which became verio which became ntt.  lots of local
> portland folk had subdomains, email, ...
>
> well, with zero notice, ntt seems to have flogged it off to someone who
> does not give a damn, and a lot of folk's email and so forth is dead
> dead dead.  packets and smtp falling on the floor.
>
> a friend once gave me a tee shirt which says "god helps those who own a
> majority share."  the corollary is that the goddess helps those who own,
> or otherwise control, the domains on which they rely.
>
> randy
>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://mailman.nanog.org/pipermail/nanog/attachments/20180905/8593d6ab/attachment.html>

References:
- watch your domain
  - From: randy at psg.com (Randy Bush)

Prev by Date: FYI - IX-Denver Call for Volunteers (3 Board Seats up for Election)
Next by Date: automatic rtbh trigger using flow data
Previous by thread: watch your domain
Next by thread: FYI - IX-Denver Call for Volunteers (3 Board Seats up for Election)
Index(es):
- Date
- Thread