Any workarounds for Verisign .com/.net highjacking?
Terry Lambert
tlambert2 at mindspring.com
Tue Sep 16 23:12:42 PDT 2003
Clifton Royston wrote:
> For those who don't know what I'm talking about, try executing "host
> thisdomainhasneverexistedandneverwill.com", or any other domain you'd
> care to make up in .com or .net. Verisign has abused the trust placed
> in them to operate a root name server, by creating wildcard A records
> directly under .com and .net, which point to Verisign's "search"
> website.
If you get their A record in your resolver, pretend you got the
standard error instead. It's a really easy resolver hack.
-- Terry
More information about the freebsd-hackers
mailing list