2010 January 12, Tuesday, to many Chinese, it is a very ordinary day. However, for global Baidu users search terms, it is a very sad day: this day, their hearts databases, Baidu. Com domain, according to Internet access introduced: "the first to find an Australian man, more than six o 'clock in the morning in group updates, said in his visit no Baidu." Until I wrote this morning when the Beijing time 11 12 points, Baidu website Baidu. Com still visit domain name, until 12 when many returned to normal. Netizens to visit with IP address is proved to be successful. Obviously, this was another domain was holding events.
[domain information found tracks]
The author submitted domain names online from Baidu. Com Whois database () record:
As for baidu. Com WHOIS
Registrant:
Domain Discreet
ATTN: baidu. Com
Camara Brito Rua Dr. 20, 1, n
Funchal, Madeira 9,000-039
PT
Please: 1-902-7495331
Email: 036f37850a14115101201f9483195f63@domaindiscreet.com
Registrar Name... : receive. Com (registered commercial)
Registrar Whois... Whois j j, receive a com
Homepage: www.register.com Registrar
Domain Name: baidu. Com
Created on... : 1999-10-11
Expires on... : 2014-10-11
Administrative Contact:
Domain Discreet
ATTN: baidu. Com
Camara Brito Rua Dr. 20, 1, n
Funchal, Madeira 9,000-039
PT
Please: 1-902-7495331
Email: 036f376a0a14115100199c0316d64ebb@domaindiscreet.com
With Contact:
Domain Discreet
ATTN: baidu. Com
Camara Brito Rua Dr. 20, 1, n
Funchal, Madeira 9,000-039
PT
Please: 1-902-7495331
Email: 036f37860a14115101c8a6d69ced14a8@domaindiscreet.com
The DNS Servers:
Yns1. Yahoo. Com
Yns2. Yahoo. Com
The previous information obtained them either been The language from The registrant or a registrar of The domain name of than a Solutions. Solutions, a standard does not to, accuracy or completeness amplifier.
Display data for physicist at.this record enabled
Registrar: receive is, INC. (j COM Registrar)
IP 220.181.6.175 (ARIN & after: 5 IP get)
IP Location: CN (CHINA) - listen to listen -
Record Type: Domain Name
Server Type: of 1
ClientTransferProhibited Lock they:
They: Active WebSite
DMOZ 1 listings
Y! Directory listings, split
Secure: Yes
Requires: No
Just: 4 in agriculture
Data as of: 22 - Apr - 2008
Found a few interesting questions:
1, management Email (Email) : this is 036f37850a14115101201f9483195f63@domaindiscreet.com registrar, INC. J COM receive all the domaindiscreet. COM domain name for suffixes, namely this domain name solely to registrar management.
2, it did not to domain deletion period, domain name state (they) is' Lock are Prohibited forbid to Transfer, but DNS server (DNS Servers) but with Yahoo company's two server:
Yns1. Yahoo. Com
Yns2. Yahoo. Com
Netizens to provide morning visit was Baidu. Com domain jump to yahoo. Com webpage, and leave the word hacker claims are Iran.
3, the domain name Baidu. Com database (Whois) record Data last updated time is 2 years old (Data as of) : 22 - Apr - 2008, but in fact it is today that it was changing, but did not leave any Data update records, apparently belong to abnormal updates.
The author further access is also belong to Baidu (Shanghai) company all the Baidu.net domain Whois state records is normal, domain names, domain name Baidu. Cn Baidu. Com. Cn is normal, but access to none success, seems to imply that Baidu companies have not to the three important domain analytical (?) .
[history is similar]
"Chinese netizens news (www.chinanetzen.com.cn) register in 2008 392 period on August 4, Eric was a version of the text: MBT Raha, I have lion in head also dare to observe: black ICANN on network domain security alarm bells" tells is hacker attacks the international Internet domain name and address management institution of ICANN's official website several spare domain name, will its domain name changed pointing, and point to the web after the change left a rowdy word. This in many people's opinion is really very ironic thing. Has been providing security guide network domain name the ICANN this time incredibly itself to ourselves. The hacker attacks did that happen? What has the secrets of behind how? For domestic domain security field and what apocalypse? With these questions, the author exclusive interview the ICANN's technical director John crane
"Hackers have never into our website, they just modified icann. Com etc domain name system pointing to it." July 5, ICANN at technical director John crane in accepting our newspaper reporter interviews that, this is due to the registrar ICANN together by registration system under attack hijack the domain name. Hackers methods are very special. They receive from the registrar. Com ports, and modify the invasion of the database with icann related some domain guidance. At present, the registrar to ICANN has provided a copy of such attack the comprehensive top secret security report.
Meanwhile, John crane also pointed out that these misguided domain name is only the IANA main web site with ICANN mirror pointing just, ICANN and IANA two institutions www.icann.org and www.iana.org website owners domain unaffected. Discovery DNS (domain name system)mbt shoes sale again by pointing to phenomenon, ICANN in 20 minutes will restore their normal, global Internet restore normal visit the longest do not exceed 48 hours.
The author interesting that: July 2008 event happening with 2010 domain ICANN on January 12 the baidu is the only enable domain from the hacker registrar receive. Com ports invasion, and modify the relevant database domain oriented lead to visit some mistakes. In other words: the registrar of the backend database receive. Com loophole has not mended and no more than two years to grow!
[baidu domain event foreword.some Revelations]
1, baidu domain is not perfect step department
Main is only enabled a baidu. Com baidu. Cn domain names, domain name for the Lord, cause the user without refrigeration met this state cannot use. It should study Google company, even g.c n also enabled.
2, baidu company superstition. Com taste of consequences
First is not understand. Cn domain in China root servers. Com than step department of root servers step department, professor QianHuaLin firm N times in a few years ago to accept I interview already said: even if China's export electricity embrace all broken, China's Internet only 1 hour can also self-sustaining operation.
Second is according to CNNIC domain CRB assessment teams work in 10 years in the WangXiuYu engineer introduction, Mrs, like baidu baidu. Cn primary domain state, CNNIC technical background is not allowed to change, must provide proof file by baidu company, artificial modification. This is all included in protection list. Cn domain website safeguard.
Finally the domain name is baidu company to receive. Com the registrar, want to let others do right in time on technical support, and baidu company problems still don't know receive. Com the registrar has become the global background technicalMBT Habari, loophole hacking entrance.
Three, domain name security steps department motorists
Domain security issues including ICANN inside the domain name registration management mbt sandals sale agencies increasingly focus on the problem. With ICANN, for example, in the 2010 budget invested in the general budget 10.3% (amount accounts for nearly three million dollars) to strengthen root server system security reform.
And from international e-commerce sites domain security steps, the foreign office most web portal still adopt the domain name server proxy mechanism, ensure in more security environment operation.
Generally a summary is: network security is a ruler, high civil zhangs. Only do the domain security steps department in order to avoid damage prepared.
No comments:
Post a Comment