[77185] in North American Network Operators' Group
Re: panix.com hijacked
daemon@ATHENA.MIT.EDU (Raymond Dijkxhoorn)
Sun Jan 16 05:37:14 2005
Date: Sun, 16 Jan 2005 11:36:37 +0100 (CET)
From: Raymond Dijkxhoorn <raymond@prolocation.net>
To: "Christopher L. Morrow" <christopher.morrow@mci.com>
Cc: Valdis.Kletnieks@vt.edu, Henry Yen <henry@AegisInfoSys.com>,
nanog@nanog.org, Mark Jeftovic <markjr@easydns.com>
In-Reply-To: <Pine.GSO.4.58.0501160707030.11301@sharpie.argfrp.us.uu.net>
Errors-To: owner-nanog-outgoing@merit.edu
Hi!
>> So let's see.. the users will see this when they log into shell.panix.net
>> (since shell.panix.com is borked).. Somehow, that doesn't seem to help much..
> and the hijackers could be, potentially, running a box pretending to be
> shell.panix.com, gathering userids and passwds :(
Or put up a pop server, thats more likely used by more of their customers
anyway.
The other question was a nice one also, did they hve REGISTER-LOCK set for
the domain?
Bye,
Raymond
