Re: Yahoo! -- A "Phisher-friendly" hosting domain?
Someone is... or trying to, at least, watch and contact the responsible owners/registrars, but in some cases they aren't apparently eager to assist. That's why the ones that are caught end up in various RBL's... - ferg -- Alex Rubenstein <alex@nac.net> wrote: Shouldn't someone be watching these, though? root@sodium:~# whois paypal.com [...] PAYPAL.COM.SV04.COM PAYPAL.COM.LIMITSPEED.NET PAYPAL.COM While I agree in concept that this is not how the internet runs, and I am not proposing a domain name police force be instituted, it seems to me that things like this are easily caught. Not to mention, the purpose of them is clear. On Wed, 31 Aug 2005, Fergie (Paul Ferguson) wrote:
That's good, however, I regret that the issue had to be aired here because it didn't get attention it deserved through "proper channels" and elsewhere...
- ferg
-- Florian Weimer <fw@deneb.enyo.de> wrote:
But it caught my eye that SOMEBODY at Yahoo! ought to be reviewing domain names like "bankofthewestupdate.com"
Registrars should as well, but this is not the way the Internet works. Sometimes, this is a good thing, sometimes, it's not.
It seems that the A RR has been pulled around 2005-08-30 21:00 UTC, so this particular issue has already been resolved.
-- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg@netzero.net or fergdawg@sbcglobal.net ferg's tech blog: http://fergdawg.blogspot.com/
-- Alex Rubenstein, AR97, K2AHR, alex@nac.net, latency, Al Reuben Net Access Corporation, 800-NET-ME-36, http://www.nac.net
On Wed, 31 Aug 2005, Fergie (Paul Ferguson) wrote:
Someone is... or trying to, at least, watch and contact the responsible owners/registrars, but in some cases they aren't apparently eager to assist.
Some registrars are good and some are bad and without better controls being developed by ICANN, user-based reputation system will eventually come in and will be greatly despised by registrars (like many ISPs do not like RBLs) but nonetheless widely used by users.
-- Alex Rubenstein <alex@nac.net> wrote:
Shouldn't someone be watching these, though? root@sodium:~# whois paypal.com
[...]
PAYPAL.COM.SV04.COM PAYPAL.COM.LIMITSPEED.NET PAYPAL.COM
Above are hostnames under another domain that were registered as nameservers (which seems to be mostly for fun so it would show up in whois for those using less-then-smart whois clients). I don't think above names have anything to do with phishing at all since for phishing one could easily just setup host "paypal.phisherdomain.com" (without any registration in whois), but that is not widely used and a lot more common are attempts at something like paypa1.com. -- William Leibzon Elan Networks william@elan.net
participants (2)
-
Fergie (Paul Ferguson)
-
william(at)elan.net