[ale] AOL, DNS poisoning and spam
Alexander Barton
abarton at mindspring.com
Wed Apr 6 20:29:23 EDT 2005
Michael H. Warfield wrote:
> On Wed, 2005-04-06 at 16:21 -0400, James P. Kinney III wrote:
>
>>I just read the DNS poisoning notice from /. I went to www.aol.com and
>>noticed the site was taking forever to load as the url bar at the bottom
>>of firefox kept saying waiting on http300.content.edge.ru4.com
[...]
> So... Run the command "dig www.aol.com" and tell us what you get.
> Also, what is in your "/etc/resolve.conf" file? I'll pass the
> information on to the security community.
Me too. Here's the details:
abarton at doom:~> dig www.aol.com
; <<>> DiG 9.2.3 <<>> www.aol.com
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 65015
;; flags: qr rd ra; QUERY: 1, ANSWER: 2, AUTHORITY: 2, ADDITIONAL: 0
;; QUESTION SECTION:
;www.aol.com. IN A
;; ANSWER SECTION:
www.aol.com. 2323 IN CNAME www.gwww.aol.com.
www.gwww.aol.com. 19 IN A 64.12.187.22
;; AUTHORITY SECTION:
gwww.aol.com. 2323 IN NS dtc-gdns004.ns.aol.com.
gwww.aol.com. 2323 IN NS mtc-gdns004.ns.aol.com.
;; Query time: 29 msec
;; SERVER: 64.94.1.1#53(64.94.1.1)
;; WHEN: Wed Apr 6 20:15:23 2005
;; MSG SIZE rcvd: 123
abarton at doom:~> cat /etc/resolv.conf
domain site
nameserver 64.94.1.1
nameserver 64.94.1.33
abarton at doom:~>
-Alexander
More information about the Ale
mailing list