Bugtraq mailing list archives

Re: Anyone can take over virtually any domain on the net...

From: cmadams () HIWAAY NET (Chris Adams)
Date: Thu, 13 Jan 2000 13:09:04 -0600


Once upon a time, Thomas Reinke <reinke () E-SOFTINC COM> said:

BTW, Network Solution's instructions on changing the
scheme to a userid and password based system doesn't
work very well. We've attempted on several occasions
to do this with no luck...thereby forcing on us the guardian
scheme :(


I've setup contacts with CRYPT-PW authentication, and they ignore it.
We had a domain hijacked a month or two ago (someone changed the
contacts and the DNS servers), and they just forged the email headers as
coming from the old technical contact.  That contact had CRYPT-PW
authentication setup, but NetSol processed the change anyway with just
the mail From: header matching.  It then took them over 24 hours from
when we notified them to fix it (even though they reload the zone files
twice daily).

However, since AFAIK there is no way to move a domain from one registrar
to another (without letting it expire and risking losing it), they still
have en effective monopoly on all existing domain names that are
registered with them.

--
Chris Adams <cmadams () hiwaay net>
Systems and Network Administrator - HiWAAY Information Services
I don't speak for anybody but myself - that's enough trouble.

Current thread:

BindView Security Advisory: Local Promotion Vulnerability in Windows NT 4, (continued)
- - - BindView Security Advisory: Local Promotion Vulnerability in Windows NT 4 BindView Security Advisory (Jan 13)
    - Microsoft Security Bulletin (MS00-003) Microsoft Product Security (Jan 13)
    - ICQ Buffer Overflow Exploit drew copley (Jan 11)
    - Re: ICQ Buffer Overflow Exploit Dennis W. Mattison (Little Wolf) (Jan 12)
    - Re: ICQ Buffer Overflow Exploit Michael DeSimone (Jan 13)
    - Re: ICQ Buffer Overflow Exploit Tom Schumm (Jan 14)
    - Re: ICQ Buffer Overflow Exploit Simon Steed (Jan 13)
    - Anyone can take over virtually any domain on the net... Thomas Reinke (Jan 11)
    - Re: Anyone can take over virtually any domain on the net... Jon Lewis (Jan 13)
    - Re: Anyone can take over virtually any domain on the net... Jeffrey Paul (Jan 13)
    - Re: Anyone can take over virtually any domain on the net... Chris Adams (Jan 13)
    - Re: Anyone can take over virtually any domain on the net... Shafik Yaghmour (Jan 13)
    - Re: Anyone can take over virtually any domain on the net... Nick Lamb (Jan 15)
    - Re: Anyone can take over virtually any domain on the net... Kurt Seifried (Jan 13)
    - Blinding BIND to a moving domain D. J. Bernstein (Jan 12)
    - Re: Blinding BIND to a moving domain Ken Gourlay (Jan 12)
    - CyberCash MCK 3.2.0.4: Large /tmp hole Sheldon Young (Jan 12)
    - Administrivia: ORBS Elias Levy (Jan 12)
    - WebSitePro/2.3.18 is revealing Webdirectories Lark Lizerman (Jan 12)
    - Re: Hotmail security hole - injecting JavaScript using <IMG Grahame Bowland (Jan 05)
  - Yet another Hotmail security hole - injecting JavaScript in IE using "@import url(javascript:...)" Georgi Guninski (Jan 06)

(Thread continues...)