Groups | Search | Server Info | Keyboard shortcuts | Login | Register [http] [https] [nntp] [nntps]
Groups > comp.protocols.dns.bind > #15820
| From | Fred Morris <m3047@m3047.net> |
|---|---|
| Newsgroups | comp.protocols.dns.bind |
| Subject | Re: Fwd: DNS Misconfiguration on- http://cyberia.net.sa/ |
| Date | 2020-06-05 09:16 -0700 |
| Message-ID | <mailman.496.1591373781.942.bind-users@lists.isc.org> (permalink) |
| References | <CALAvY8mCB8aC4fqH+x+8Y5C2mS2i5_OZxOROpgp1gQ9yTx3g-w@mail.gmail.com> <CAESnv-YsFi1cq6SFEgijq5=6TET20b6enWU9foa07AfBmVp3Fg@mail.gmail.com> <CAESnv-az+HJ6N5-GMuzd=NrTOvv_xyHWuq=yRp1cy25W+evmPQ@mail.gmail.com> <alpine.LSU.2.21.2006050904310.20305@flame.m3047> |
Hrmmm... I'm reminded of something else I've seen reported on recently... On Fri, 5 Jun 2020, Ejaz Ahmed wrote: > localhost.cyberia.net.sa I don't know if you've been paying attention, but it's been reported that among others EBay has been port scanning visitor's devices [0]. Having localhost.ebay.com could be handy for them in terms of circumventing some rules on setting of cookies and the execution of scripts. Not saying that's what they're doing, heaven forbid. Any domain you visit could have entries in it which point to e.g. localhost or nonrouting addresses commonly used for gateways, things like that. This is not a DNS problem, it's a problem in what commonly used programs aid and abet in the name of "freedom of commerce" or something. -- Fred Morris -- [0] https://www.bleepingcomputer.com/news/security/ebay-port-scans-visitors-computers-for-remote-access-programs/
Back to comp.protocols.dns.bind | Previous | Next | Find similar
Re: Fwd: DNS Misconfiguration on- http://cyberia.net.sa/ Fred Morris <m3047@m3047.net> - 2020-06-05 09:16 -0700
csiph-web