Date: Tue, 10 Nov 1998 07:04:26 -0800 From: Jeff Kletsky <Jeff@Wagsky.com> To: "Hallam Oaks" <mlnn4@oaks.com.au> Cc: freebsd-security@FreeBSD.ORG Subject: Re: hmmmm ... Doubleclick Message-ID: <l03130307b26e051212b7@[192.168.6.3]> In-Reply-To: <199811070924.UAA01040@mail.aussie.org>
next in thread | previous in thread | raw e-mail | index | archive | help
>I visited a site which had a doubleclick ad on it, >[...] two seperate IP addresses had attempted to make TCP >connections to port 53 (DNS) of the machine that hosts my proxy. That IP >address does NOT host any DNS server. [...] >Now, I'm not suggesting that doubleclick are doing anything they shouldn't >here, but I'm still curious as to why they would attempt to make a TCP >connection to a non-existant DNS server, based purely on the IP address of >someone who's viewed one of their ads (it was at the Dilbert zone BTW). Yes, the will verbally acknowledge this if you call them. They don't give a good reason, but I believe it is to build their database of demographics so that they can justify charges for their ad placements. I don't believe that it matters *which* Doubleclick-related site you visit. Yet another reason to disable zone transfers either/both with a firewall and your DNS configuration files (c.f. secure_zone)... Jeff To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?l03130307b26e051212b7>