Discuss mailing list

[Ariel Millennium Thornton <arielmt AT thornton2.com>]

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

There would be little value as far as OpenNIC-related purposes would go,
but there is tremendous value in compromising Web servers regardless of
intended purpose.  Among the more obvious nefarious reasons is to use a
compromised site as a phishing hook, whose IP address or fast flux-like
DNS address (accessible recursively through ICANN) is sent in phishing
lure spam messages.

It's very possible, I daresay likely, that your server's attacker(s) are
completely unaware of OpenNIC.

- -ArielMT

On Sun, May 06, 2012 at 09:32:25PM +0100, Peter Green wrote:
> My surprise is that anyone would bother attacking an OpenNIC site,
> they are not mainstream and so there would be little value in
> compromising them.
> 
> Mind you, as I type I wonder if that they could potentially take
> over a server and thus make the effort worthwhile?
> 
> Peter
> 
> 
> On Sun, 6 May 2012 13:27:34 -0700, Travis McCrea wrote:
> 
> >Do you mean your script itself is getting a MySQL injection? Or do
> >you
> >think that dotFree registry is getting attacked? If it's your
> >site, it
> >doesn't matter what domain it's on, there is still a vulnerability in
> >your script itself.
> >
> >Travis McCrea
> >Deputy Leader, Pirate Party of Canada
> >Board Member, Pirate Parties International
> >Member, Washington State Pirate Party
> >Canada: 1(778)709-4859
> >US: 1(206)552-8728
> >Twitter: @TeamColtra
> >Facebook: fb.me/teamcoltra
> >Blog: http://travismccrea.com [2]
> >The views expressed in this email represent my own personal values
> >and
> >not the values of the Pirate Party, the Pirate Ideology, or any of my
> >associations.
> >
> >On 2012-05-06, at 1:22 PM, Peter Green wrote:
> >
> >>Hi,
> >>
> >>Maybe I shouldn't be but I am surprised to see an SQL Injection
> >>Attack
> >>from what I see is a Japanese I.P. address (150.70.64.195) on
> >>one of my
> >>.free domains today.
> >>
> >>In it self it is nothing new, my many other I.C.A.N.N. domains
> >>get them
> >>regularly.
> >>
> >>Do other people here get that kind of abuse on their OpenNIC
> >>domains?
> >>
> >>Peter
> >>
> >>--------
> >>You are a member of the OpenNIC Discuss list. You may unsubscribe by
> >>emailing discuss-unsubscribe AT lists.opennicproject.org [1]
> 
> 
> Links:
> ------
> [1] mailto:discuss-unsubscribe AT lists.opennicproject.org
> [2] http://travismccrea.com
> 
> 
> --------
> You are a member of the OpenNIC Discuss list. You may unsubscribe by
> emailing discuss-unsubscribe AT lists.opennicproject.org
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.10 (GNU/Linux)
Comment: The right to speak PGP is the right to speak Navajo.
Comment: http://emoglen.law.columbia.edu/my_pubs/yu-encrypt.html

iQEcBAEBAgAGBQJPpvFsAAoJEMxtfghIe5Iub8cH/1hw9TiE20H2au43AcJ3fCZU
YKfKpe0Tyh6OE0G/X85RYHqK2vdStqetUWxDG3exs8jQJ8y+zYYpkVa8ma5Hq2b4
tBJ78XhR43v659Z9tjVoRbnGi8yUz44j7O16EQPrEwpM07gsgA0NCHo9KjIDHv1/
4elzV9kzTydpbeFXxxqR06CcbtzKjiJ4mc4ysx+ET/EJIbm++w7ctoll7CSPbTqr
Otul1U3uicZCRyU4s4IFtFIury5XI0s9Ez5KA9lJi72zID+atc2j2L1NEMFsQTcL
Ewl2Y2w+QZt4rfEyQSOSv330bfxo1BEy9LlL4xdUKAbluBZ4ijlDEKZ8WK74y9o=
=Bk57
-----END PGP SIGNATURE-----