Re: http://thesource.ofallevil.com/hmmm

Subject: Re: http://thesource.ofallevil.com/hmmm
From: W.D.McKinney (deem@wdm.com)
Date: Fri Sep 13 2002 - 10:54:28 AKDT

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
• Next message: W.D.McKinney: "SuSE 8.1"
• Previous message: bryan@ak.net: "Re: mailing list management software ??"
• In reply to: Mike Tibor: "Re: http://thesource.ofallevil.com/hmmm"
• Reply: W.D.McKinney: "Re: http://thesource.ofallevil.com/hmmm"
• Reply: W.D.McKinney: "Re: http://thesource.ofallevil.com/hmmm"

Semantics.

Regards.

On (13/09/02 13:50), Mike Tibor wrote:
> Date: Fri, 13 Sep 2002 13:50:55 -0800 (AKDT)
> From: Mike Tibor <tibor@lib.uaa.alaska.edu>
> To: <aklug@aklug.org>
> Subject: Re: http://thesource.ofallevil.com/hmmm
>
>
> On Fri, 13 Sep 2002, Tim Johnson wrote:
>
> >
> > * W.D.McKinney <deem@wdm.com> [020913 11:06]:
> > >
> > > Spoofing dns like this happens frequently. MS is especially a target.
> > > I have seen many of these and whois database should not be your confirmation.
> > > You had better get up to speed :-)
> >
> > Nows your chance. Enlighten, then I'll be up to speed.
> > thnx
>
> There actually isn't any spoofing going on here at all. Someone just
> registered a domain, and setup an A record pointing to the IP address of
> www.microsoft.com:
>
>
> shatner:/usr/home/tibor$ host thesource.ofallevil.com
> thesource.ofallevil.com is a nickname for source.ofallevil.com
> source.ofallevil.com has address 207.46.230.219
>
> shatner:/usr/home/tibor$ host 207.46.230.219
> 219.230.46.207.IN-ADDR.ARPA domain name pointer microsoft.com
> 219.230.46.207.IN-ADDR.ARPA domain name pointer microsoft.net
> 219.230.46.207.IN-ADDR.ARPA domain name pointer
> www.international.microsoft.com
> 219.230.46.207.IN-ADDR.ARPA domain name pointer www.us.microsoft.com
>
> shatner:/usr/home/tibor$ whois ofallevil.com
>
> [...]
> Of All Evil
> Hades
> Hell, on Earth
> CA
>
> Domain Name: OFALLEVIL.COM
>
> Administrative Contact:
> Evil One no@such---address.org
> Of All Evil
> Hades
> Hell, on Earth
> CA
> Phone:
> Fax:
> Technical Contact:
> Robert Mudryk rmudryk@YAHOO.COM
> lasers.org
> 990 Dominion Dr.
> Westlake, OH 44145
> US
> Phone: 440 871-1223
> Fax: (440) 871-9284
>
> Record updated on 2002-06-06 22:54:03
> Record created on 2002-06-05
> Record expires on 2003-06-05
> Database last updated on 2002-09-13 17:47:20 EST
>
> Domain servers in listed order:
>
> AUTH00.LASERS.ORG 63.95.171.235
> AUTH01.LASERS.ORG 209.143.62.11
>
>
> Register your domain name at http://www.bulkregister.com
>
>
>
> Mike
> --

-- 
W.D.McKinney (Dee)
http://3519098920
---------
To unsubscribe, send email to <aklug-request@aklug.org>
with 'unsubscribe' in the message body.

• Next message: W.D.McKinney: "SuSE 8.1"
• Previous message: bryan@ak.net: "Re: mailing list management software ??"
• In reply to: Mike Tibor: "Re: http://thesource.ofallevil.com/hmmm"
• Reply: W.D.McKinney: "Re: http://thesource.ofallevil.com/hmmm"
• Reply: W.D.McKinney: "Re: http://thesource.ofallevil.com/hmmm"

This archive was generated by hypermail 2a23 : Fri Sep 13 2002 - 18:55:30 AKDT