Bugtraq mailing list archives
Using Example Domain Names in Exploits
From: bandregg () REDHAT COM (bandregg () REDHAT COM)
Date: Mon, 25 Jan 1999 16:25:40 -0500
On Sun, 24 Jan 1999 20:23:40 -0500, "Tabor J. Wells" wrote:
On Fri, Jan 22, 1999 at 08:58:33PM -0000, mnemonix <mnemonix () GLOBALNET CO UK> is thought to have said:In all versions of IIS, where a website has been configured to interpret perl scripts using the perl executable (perl.exe), a problem exists where a request for a non-existent file will return the physical location on a disk of a web directory. A request for: http://www.server.com/scripts/no-such-file.plI really wish people wouldn't do this. www.server.com is a legitimate site (it's hosted on my network) and they certainly don't run IIS.
The domains example.com, example.org, and example.net have all been reserved by IANA and NIC for just this purpose. Use them. -- Bryan C. Andregg * <bandregg () redhat com> * Red Hat Software "Gee, I'm glad you're around to tell me the almighty-truth[tm]." -- Patrick J. Volkerding
Current thread:
- linux crashes irix6.3, (continued)
- linux crashes irix6.3 Philipp Schott (Jan 22)
- Re: linux crashes irix6.3 J.A. Gutierrez (Jan 23)
- CERT Advisory CA-99.01 - TCP.Wrappers (fwd) //Stany (Jan 22)
- Misleading CERT Advisory CA-99-01-Trojan-TCP-Wrappers Jochen Thomas Bauer (Jan 22)
- Follow up - IIS 4 logging mnemonix (Jan 23)
- WebRamp M3 remote network access bug John Stanley (Jan 21)
- Re: WebRamp M3 remote network access bug James Egelhof (Jan 21)
- Perl.exe and IIS security advisory mnemonix (Jan 22)
- Re: Perl.exe and IIS security advisory Tabor J. Wells (Jan 24)
- Repost: Wietse's FTP site has moved Wietse Venema (Jan 25)
- Using Example Domain Names in Exploits bandregg () REDHAT COM (Jan 25)
- IIS Advisory Update Marc (Jan 24)
- Re: backdoored tcp wrapper source code John Stange (Jan 23)
- SSH 1.x and 2.x Daemon KuRuPTioN (Jan 23)
- Re: SSH 1.x and 2.x Daemon Jan B. Koum (Jan 24)
- Re: SSH 1.x and 2.x Daemon Linux Mailing Lists (Jan 25)
- Re: SSH 1.x and 2.x Daemon KuRuPTioN (Jan 25)