http://uptime.netcraft.com/up/graph?site=www.comcast.com
http://uptime.netcraft.com/up/graph?site=www.comcast.net
"Two teenagers who say they hijacked Comcast's Web portal on Thursday
also say they expect to be arrested for their actions."
[...]
http://news.cnet.com/8301-10784_3-9956165-7.html
-RFH
|
|
0
|
|
|
|
Reply
|
 ramon (1465)
|
5/31/2008 2:34:41 AM |
|
On Fri, 30 May 2008 19:34:41 -0700, Ramon F Herrera wrote:
> http://uptime.netcraft.com/up/graph?site=www.comcast.com
> http://uptime.netcraft.com/up/graph?site=www.comcast.net
>
> "Two teenagers who say they hijacked Comcast's Web portal on Thursday
> also say they expect to be arrested for their actions." [...]
>
> http://news.cnet.com/8301-10784_3-9956165-7.html
>
> -RFH
Based on that article, it sounds like they hacked Network Solutions.
|
|
|
0
|
|
|
|
Reply
|
 alt
|
5/31/2008 6:26:04 AM
|
|
["Followup-To:" header set to comp.unix.solaris.]
On 2008-05-31, Ramon F Herrera <ramon@conexus.net> wrote:
>
> http://uptime.netcraft.com/up/graph?site=www.comcast.com
> http://uptime.netcraft.com/up/graph?site=www.comcast.net
>
> "Two teenagers who say they hijacked Comcast's Web portal on Thursday
> also say they expect to be arrested for their actions."
> [...]
>
> http://news.cnet.com/8301-10784_3-9956165-7.html
>
> -RFH
>
They didn't hack the site, they hacked Comcast's domain registration
with Network Solutions, enabling them to substitute their DNS
servers for Comcast's own by changing Network Solutions' DNS server
info. I'm not sure of exactly how they accomplished this, except
that Comcast's domain was anywhere near expiring, so they didn't do
it by just picking up the domain after Comcast let it lapse. While
I agree that Solaris and Linux are considerably more resistant to
being hacked than Windows, this one has to be chalked up to Network
Solution's awful change management and security, and not any weakness
in Windows.
--
Christopher Mattern
NOTICE
Thank you for noticing this new notice
Your noticing it has been noted
And will be reported to the authorities
|
|
|
0
|
|
|
|
Reply
|
Chris
|
5/31/2008 7:50:47 AM
|
|
alt wrote:
> On Fri, 30 May 2008 19:34:41 -0700, Ramon F Herrera wrote:
>
>
>> http://uptime.netcraft.com/up/graph?site=www.comcast.com
>> http://uptime.netcraft.com/up/graph?site=www.comcast.net
>>
>> "Two teenagers who say they hijacked Comcast's Web portal on Thursday
>> also say they expect to be arrested for their actions." [...]
>>
>> http://news.cnet.com/8301-10784_3-9956165-7.html
>>
>> -RFH
>>
>
> Based on that article, it sounds like they hacked Network Solutions.
>
Network Solutions got rid of Solaris years ago and now runs mainly a
Linux shop.
So to answer the question "which one got hacked", the answer is Linux,
but not at Comcast,
but at Network Solutions.
|
|
|
0
|
|
|
|
Reply
|
Julie
|
5/31/2008 3:15:22 PM
|
|
On May 31, 3:50 am, Chris Mattern <sys...@sumire.gwu.edu> wrote:
> ["Followup-To:" header set to comp.unix.solaris.]
> On 2008-05-31, Ramon F Herrera <ra...@conexus.net> wrote:
>
>
>
> >http://uptime.netcraft.com/up/graph?site=www.comcast.com
> >http://uptime.netcraft.com/up/graph?site=www.comcast.net
>
> > "Two teenagers who say they hijacked Comcast's Web portal on Thursday
> > also say they expect to be arrested for their actions."
> > [...]
>
> >http://news.cnet.com/8301-10784_3-9956165-7.html
>
> > -RFH
>
> They didn't hack the site, they hacked Comcast's domain registration
> with Network Solutions, enabling them to substitute their DNS
> servers for Comcast's own by changing Network Solutions' DNS server
> info. I'm not sure of exactly how they accomplished this, except
> that Comcast's domain was anywhere near expiring, so they didn't do
> it by just picking up the domain after Comcast let it lapse. While
> I agree that Solaris and Linux are considerably more resistant to
> being hacked than Windows, this one has to be chalked up to Network
> Solution's awful change management and security, and not any weakness
> in Windows.
>
> --
> Christopher Mattern
Wired magazine published an exclusive interview with one of the
hackers. He claims that they took advantage of a security hole at
Network Solutions, one that still exists but he refused to disclose.
Network Solutions denies it.
-RFH
|
|
|
0
|
|
|
|
Reply
|
Ramon
|
5/31/2008 5:00:22 PM
|
|
____/ Ramon F Herrera on Saturday 31 May 2008 18:00 : \____
> On May 31, 3:50 am, Chris Mattern <sys...@sumire.gwu.edu> wrote:
>> ["Followup-To:" header set to comp.unix.solaris.]
>> On 2008-05-31, Ramon F Herrera <ra...@conexus.net> wrote:
>>
>>
>>
>> >http://uptime.netcraft.com/up/graph?site=www.comcast.com
>> >http://uptime.netcraft.com/up/graph?site=www.comcast.net
>>
>> > "Two teenagers who say they hijacked Comcast's Web portal on Thursday
>> > also say they expect to be arrested for their actions."
>> > [...]
>>
>> >http://news.cnet.com/8301-10784_3-9956165-7.html
>>
>> > -RFH
>>
>> They didn't hack the site, they hacked Comcast's domain registration
>> with Network Solutions, enabling them to substitute their DNS
>> servers for Comcast's own by changing Network Solutions' DNS server
>> info. I'm not sure of exactly how they accomplished this, except
>> that Comcast's domain was anywhere near expiring, so they didn't do
>> it by just picking up the domain after Comcast let it lapse. While
>> I agree that Solaris and Linux are considerably more resistant to
>> being hacked than Windows, this one has to be chalked up to Network
>> Solution's awful change management and security, and not any weakness
>> in Windows.
>>
>> --
>> Christopher Mattern
>
>
> Wired magazine published an exclusive interview with one of the
> hackers. He claims that they took advantage of a security hole at
> Network Solutions, one that still exists but he refused to disclose.
> Network Solutions denies it.
>
> -RFH
Heise says it's SSL.
--
~~ Best of wishes
Roy S. Schestowitz | Free 3-D Reversi: http://othellomaster.com
http://Schestowitz.com | RHAT Linux | PGP-Key: 0x74572E8E
22:05:01 up 46 days, 20:17, 4 users, load average: 0.20, 0.28, 0.64
http://iuron.com - Open Source knowledge engine project
|
|
|
0
|
|
|
|
Reply
|
Roy
|
5/31/2008 9:08:32 PM
|
|
On Fri, 30 May 2008 19:34:41 -0700 (PDT), Ramon F Herrera wrote:
> http://uptime.netcraft.com/up/graph?site=www.comcast.com
> http://uptime.netcraft.com/up/graph?site=www.comcast.net
>
> "Two teenagers who say they hijacked Comcast's Web portal on Thursday
> also say they expect to be arrested for their actions."
> [...]
>
> http://news.cnet.com/8301-10784_3-9956165-7.html
>
> -RFH
Network Solutions got hacked.
They run Linux...
Nice self nuke!!
--
Moshe Goldfarb
Collector of soaps from around the globe.
Please visit The Hall of Linux Idiots:
http://linuxidiots.blogspot.com/
|
|
|
0
|
|
|
|
Reply
|
Moshe
|
5/31/2008 9:18:21 PM
|
|
On Sat, 31 May 2008 11:15:22 -0400, Julie Altswitch wrote:
> alt wrote:
>> On Fri, 30 May 2008 19:34:41 -0700, Ramon F Herrera wrote:
>>
>>
>>> http://uptime.netcraft.com/up/graph?site=www.comcast.com
>>> http://uptime.netcraft.com/up/graph?site=www.comcast.net
>>>
>>> "Two teenagers who say they hijacked Comcast's Web portal on Thursday
>>> also say they expect to be arrested for their actions." [...]
>>>
>>> http://news.cnet.com/8301-10784_3-9956165-7.html
>>>
>>> -RFH
>>>
>>>
>> Based on that article, it sounds like they hacked Network Solutions.
>>
> Network Solutions got rid of Solaris years ago and now runs mainly a
> Linux shop.
> So to answer the question "which one got hacked", the answer is Linux,
> but not at Comcast,
> but at Network Solutions.
Without knowing more about the hack, it's tough to say. I wouldn't be
surprised with Netsol's track record that the system itself wasn't
hacked, but the applications that netsol has written (or the people were
"hacked").
I've had this happen to me once. I stopped using Netsol as a result.
|
|
|
0
|
|
|
|
Reply
|
alt
|
6/2/2008 4:26:15 AM
|
|
On Sat, 31 May 2008 11:15:22 -0400, Julie Altswitch wrote:
> alt wrote:
>> On Fri, 30 May 2008 19:34:41 -0700, Ramon F Herrera wrote:
>>
>>
>>> http://uptime.netcraft.com/up/graph?site=www.comcast.com
>>> http://uptime.netcraft.com/up/graph?site=www.comcast.net
>>>
>>> "Two teenagers who say they hijacked Comcast's Web portal on Thursday
>>> also say they expect to be arrested for their actions." [...]
>>>
>>> http://news.cnet.com/8301-10784_3-9956165-7.html
>>
>> Based on that article, it sounds like they hacked Network Solutions.
>>
> Network Solutions got rid of Solaris years ago and now runs mainly a
> Linux shop. So to answer the question "which one got hacked", the answer
> is Linux, but not at Comcast, but at Network Solutions.
To REALLY answer the question, they used a know DNS/BIND exploit that
Network Solutions could have easily prevented.
--
"Remain calm, we're here to protect you!"
|
|
|
0
|
|
|
|
Reply
|
Ivan
|
6/2/2008 2:35:24 PM
|
|
Moshe Goldfarb (flatfish) in real life Gary Stewart
http://colatrolls.blogspot.com/2008/01/moshe-goldfarb-troll.html
http://colatrolls.blogspot.com/2007/01/flatfish-troll.html
Traits:
* Nym shifting (see below)
* Self confessed thief and proud of it
* Homophobic
* Racist
* Habitual liar
* Frequently cross posts replies to other non-Linux related newsgroups
* Frequently cross posts articles originally not posted to COLA
** Posted from http://www.teranews.com **
|
|
|
0
|
|
|
|
Reply
|
hepcat
|
6/5/2008 6:25:25 PM
|
|
|
9 Replies
6338 Views
(page loaded in 0.206 seconds)
|
Search |
Post Question |
Groups |
Stream |
About |
Register
25712 articles. 
78 followers. 