Re: DNS Hijacking by Cox

North American Network Operators Group

Re: DNS Hijacking by Cox

From: Sean Donelan
Date: Mon Jul 23 10:59:03 2007

On Tue, 24 Jul 2007, Perry Lorier wrote:

doing it[1]. If you're interested in finding people that Undernet detects as being open proxies or such like, put an IDS rule looking for ":[^ ]* 465 [^ ]* :AUTO ".

Of course, then someone would flame the ISP for running a sniffer/wiretap on their network.

ISPs are pretty much damned no matter what they do or don't do.

References:
- DNS Hijacking by Cox Andrew Matthews
- Re: DNS Hijacking by Cox Steven M. Bellovin
- Re: DNS Hijacking by Cox Patrick W. Gilmore
- Re: DNS Hijacking by Cox Steven M. Bellovin
- Re: DNS Hijacking by Cox Steven M. Bellovin
- Re: DNS Hijacking by Cox James Hess
- Re: DNS Hijacking by Cox Perry Lorier

Prev by Date: How should ISPs notify customers about Bots (Was Re: DNS Hijacking by Cox)
Next by Date: Re: DNS Hijacking by Cox
Date Index
Thread Index
Author Index
Historical