From owner-freebsd-security Thu Nov 18 7:41:33 1999 Delivered-To: freebsd-security@freebsd.org Received: from inbox.org (inbox.org [216.22.145.8]) by hub.freebsd.org (Postfix) with ESMTP id DFF2315360 for ; Thu, 18 Nov 1999 07:41:30 -0800 (PST) (envelope-from bsd@a.servers.aozilla.com) Received: from localhost (bsd@localhost) by inbox.org (8.9.3/8.9.3) with SMTP id KAA00776; Thu, 18 Nov 1999 10:41:25 -0500 (EST) Date: Thu, 18 Nov 1999 10:41:24 -0500 (EST) From: "Mr. K." X-Sender: bsd@inbox.org To: David G Andersen Cc: freebsd-security@FreeBSD.ORG Subject: Re: localhost.org In-Reply-To: <199911181531.IAA27035@faith.cs.utah.edu> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org I thought it's automatically there because inbox.org is my domain name. I actually can't figure out how to fix this, without setting myself as authoritative for localhost.org. I'm probably just overlooking something though. On Thu, 18 Nov 1999, David G Andersen wrote: > But why in the world do you have .org in your search path? > > ... it's like leaving "." in root's executable search path: just don't do > it. The only things in your nameserver search space should be domains you > trust, or obviously, people are going to be able to pull things like that. > > -Dave > > Lo and behold, Mr. K. once said: > > > > this is really bad... today when i got to my computer i noticed that > > mysql was broken. the message was "Can't connect to MySQL server on > > localhost". so after half an hour of debugging (and rebooting my server > > :(, bye uptime), I did a telnet localhost 3306 (the mysql port). lo and > > behold, I notice: > > > > # telnet localhost 3306 > > Trying 208.211.134.100... > > telnet: Unable to connect to remote host: Connection refused > > # nslookup localhost > > Server: inbox.org > > Address: 0.0.0.0 > > > > Non-authoritative answer: > > Name: localhost.org > > Address: 208.211.134.100 > > > > ouch. time to reset all my passwords, as this bozo could have stolen them > > all. I don't know why this just started happening, unless the bozo just > > registered the domain name, which is why I'm sending along this warning to > > everyone on here. > > > > > > > > To Unsubscribe: send mail to majordomo@FreeBSD.org > > with "unsubscribe freebsd-security" in the body of the message > > > > > -- > work: dga@lcs.mit.edu me: dga@pobox.com > MIT Laboratory for Computer Science http://www.angio.net/ > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message