So... might large and medium ISPs not redirect DNS to those known addresses to a resolver in house, which would log the client IPs and let them know whom to address? Cheers, -- jra ----- Original Message -----
From: "Eric J Esslinger" <eesslinger@fpu-tn.com> To: "outages@outages.org" <outages@outages.org> Sent: Friday, July 6, 2012 12:39:56 PM Subject: [outages] www.dns-ok.us down As per subject, the DNS Changer Working Group (DCWG) site for the US is down atm. Also another very probably related issue; Foxnews, CNN, and MSNBC have all apparantly run stories in the last few hours about how the internet end is nigh, everyone is infected, and if you have any questions call your isp. (Hype levels varied per channel, I'm told as well).
__________________________ Eric Esslinger Information Services Manager - Fayetteville Public Utilities http://www.fpu-tn.com/ (931)433-1522 ext 165
This message may contain confidential and/or proprietary information and is intended for the person/entity to whom it was originally addressed. Any use by others is strictly prohibited.
_______________________________________________ Outages mailing list Outages@outages.org https://puck.nether.net/mailman/listinfo/outages
-- Jay R. Ashworth Baylink jra@baylink.com Designer The Things I Think RFC 2100 Ashworth & Associates http://baylink.pitas.com 2000 Land Rover DII St Petersburg FL USA http://photo.imageinc.us +1 727 647 1274
You can get that info from shadow server and others... Jared Mauch On Jul 6, 2012, at 5:40 PM, Jay Ashworth <jra@baylink.com> wrote:
So... might large and medium ISPs not redirect DNS to those known addresses to a resolver in house, which would log the client IPs and let them know whom to address?
Cheers, -- jra
----- Original Message -----
From: "Eric J Esslinger" <eesslinger@fpu-tn.com> To: "outages@outages.org" <outages@outages.org> Sent: Friday, July 6, 2012 12:39:56 PM Subject: [outages] www.dns-ok.us down As per subject, the DNS Changer Working Group (DCWG) site for the US is down atm. Also another very probably related issue; Foxnews, CNN, and MSNBC have all apparantly run stories in the last few hours about how the internet end is nigh, everyone is infected, and if you have any questions call your isp. (Hype levels varied per channel, I'm told as well).
__________________________ Eric Esslinger Information Services Manager - Fayetteville Public Utilities http://www.fpu-tn.com/ (931)433-1522 ext 165
This message may contain confidential and/or proprietary information and is intended for the person/entity to whom it was originally addressed. Any use by others is strictly prohibited.
_______________________________________________ Outages mailing list Outages@outages.org https://puck.nether.net/mailman/listinfo/outages
-- Jay R. Ashworth Baylink jra@baylink.com Designer The Things I Think RFC 2100 Ashworth & Associates http://baylink.pitas.com 2000 Land Rover DII St Petersburg FL USA http://photo.imageinc.us +1 727 647 1274
Some ISPs are performing internal redirection. Some, in fact, have been doing it since the takedown last November. The redirection has to stop at some point. And keep in mind, most of the systems infected with DNSchanger have other malware running on their boxes, so keeping those systems up indefinitely is actually not a good thing. Andy Andrew Fried andrew.fried@gmail.com On 7/6/12 5:40 PM, Jay Ashworth wrote:
So... might large and medium ISPs not redirect DNS to those known addresses to a resolver in house, which would log the client IPs and let them know whom to address?
Cheers, -- jra
participants (3)
-
Andrew Fried
-
Jared Mauch
-
Jay Ashworth