Whois Amazon, Yahoo (Don't Panic: not a cracked name server)
Scott Bertilson
scott at nts.umn.edu
Thu Mar 15 23:08:00 UTC 2001
> When I do a "whois amazon.com" I get;
> AMAZON.COM.SHOULD.SELL.SEXTOYSONLINE.COM
> And "whois yahoo.com" I get;
> YAHOO.COM.IS.TRYING.TO.STEAL.YAHOO.VU.HOW.ACIDULOUS.COM
Actually, you get:
AMAZON.COM.SHOULD.SELL.SEXTOYSONLINE.COM
AMAZON.COM
and:
YAHOO.COM.IS.TRYING.TO.STEAL.YAHOO.VU.HOW.ACIDULOUS.COM
YAHOO.COM
Someone is taking advantage of the way "whois" works
(and "whois" is _not_ the DNS) to take a poke at
Amazon and Yahoo. They did this by registering
ACIDULOUS.COM
and
SEXTOYSONLINE.COM
and then registering the address of a name server with
the long name that included the poke. You could have
figured this out by doing:
whois YAHOO.COM.IS.TRYING.TO.STEAL.YAHOO.VU.HOW.ACIDULOUS.COM
Scott
More information about the bind-users
mailing list