Date: Tue, 16 Sep 2003 23:11:44 -0700 From: Terry Lambert <tlambert2@mindspring.com> To: Clifton Royston <cliftonr@lava.net> Cc: freebsd-hackers@freebsd.org Subject: Re: Any workarounds for Verisign .com/.net highjacking? Message-ID: <3F67FB1F.D7269739@mindspring.com> References: <20030916102356.A11571@lava.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Clifton Royston wrote: > For those who don't know what I'm talking about, try executing "host > thisdomainhasneverexistedandneverwill.com", or any other domain you'd > care to make up in .com or .net. Verisign has abused the trust placed > in them to operate a root name server, by creating wildcard A records > directly under .com and .net, which point to Verisign's "search" > website. If you get their A record in your resolver, pretend you got the standard error instead. It's a really easy resolver hack. -- Terry
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3F67FB1F.D7269739>