[44678] in North American Network Operators' Group
Re: weird whois entries for yahoo.com
daemon@ATHENA.MIT.EDU (E.B. Dreger)
Sat Dec 8 14:08:28 2001
Date: Sat, 8 Dec 2001 19:07:50 +0000 (GMT)
From: "E.B. Dreger" <eddy+public+spam@noc.everquick.net>
To: nanog@merit.edu
In-Reply-To: <20011208181704.A27779@dataloss.nl>
Message-ID: <Pine.LNX.4.20.0112081905270.5446-100000@www.everquick.net>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Errors-To: owner-nanog-outgoing@merit.edu
> Date: Sat, 8 Dec 2001 18:17:04 +0100
> From: Peter van Dijk <peter@dataloss.nl>
> On Sat, Dec 08, 2001 at 11:06:15AM -0600, David Ulevitch wrote:
> [snip]
> > > YAHOO.COM.IS.TRYING.TO.STEAL.YAHOO.VU.HOW.ACIDULOUS.COM
> > > YAHOO.COM.AINT.NOTHIN.COMPARED.TO.SAFESEARCH.COM
> > > YAHOO.COM
> [snip]
> > Is this just someone at yahoo having fun with whois, or a more serious problem?
>
> Those are people at safesearch.com and acidulous.com having fun with
> whois. Nothing serious.
Note that you'll see the same behavior with microsoft.com and
other domains where people want to have a little fun. It's just
a difference in the regex matching -- does it match "^string$"
only (what you expected), or does it match "string" (when you see
creative NS entries).
Eddy
---------------------------------------------------------------------------
Brotsman & Dreger, Inc. - EverQuick Internet Division
Phone: +1 (316) 794-8922 Wichita/(Inter)national
Phone: +1 (785) 865-5885 Lawrence
---------------------------------------------------------------------------
Date: Mon, 21 May 2001 11:23:58 +0000 (GMT)
From: A Trap <blacklist@brics.com>
To: blacklist@brics.com
Subject: Please ignore this portion of my mail signature.
These last few lines are a trap for address-harvesting spambots. Do NOT
send mail to <blacklist@brics.com>, or you are likely to be blocked.
