Verisign - .COM and .NET not as we know it...

Post everything else here

Moderators: Website/Forum Admins, Other/Off Topic Moderators

User avatar
HM2K
Posts: 209
Joined: Thu Jul 24, 2003 5:34 pm
Location: UK
Contact:

Verisign - .COM and .NET not as we know it...

Postby HM2K » Tue Sep 16, 2003 9:19 pm

Well since no one else posted it...

As of 15/09/2003 Verisign has assigned all unregistered .com and .net domains to the following IP: 64.94.110.11

It slowly began around 12am (GMT) when .net domains started to change over, shortly followed by .com domains as root-servers were updated.

IE:
* Dns resolved verisign-sucks.net to 64.94.110.11
* Dns resolved 64.94.110.11 to sitefinder-idn.verisign.com

Verisign basicly added an A record for *.com and *.net to 64.94.110.11

News can be found here: http://www.cbronline.com/latestnews/d04 ... 9c0018be8b
and here: http://slashdot.org/articles/03/09/16/0 ... =98&tid=99

Verisign will now be forwarding all unregistered domains to their website.

IE: http://sitefinder.verisign.com/lpc?url= ... -sucks.net

Shortly after this text file was posted with more information: http://www.deliver3.com/nanog.verisign.txt

Offical Verisign Documentation:

http://www.verisign.com/resources/gd/si ... tation.pdf
http://www.verisign.com/resources/gd/si ... ctices.pdf

A patch was released for BIND8 as a way to stop verisign: http://achurch.org/bind8-verisign-patch.txt

A bug in verisign's sitefinder script was found: http://sitefinder.verisign.com/lpc?url= ... /script%3E

asdf.dk released some comical images: http://asdf.dk/dearverisign.jpg http://asdf.dk/getaclueverisign.jpg
User avatar
Pills
Forum Admin
Posts: 312
Joined: Wed Jul 02, 2003 1:14 pm
Location: Long Island, NY
Contact:

Postby Pills » Tue Sep 16, 2003 11:29 pm

Moved to off-topic.
admin, irc.umich.edu
oper, irc.servercentral.net
User avatar
munky
Site Admin
Posts: 826
Joined: Wed Jul 02, 2003 4:54 pm
Location: Phoenix AZ
Contact:

Postby munky » Wed Sep 17, 2003 1:28 pm

the 'bug' posted has been somewhat patched. you can work around the patch with http://sitefinder.verisign.com/lpc?url= ... %3b%22.net

ISC Delegation Only patches are here: http://www.isc.org/products/BIND/delegation-only.html
nanog post wrote:> Anyone have a magic named.conf incantation to counter the verisign
> braindamage?

zone "com" { type delegation-only; };
zone "net" { type delegation-only; };
In God we trust,
Everyone else must have an X.509 certificate.
User avatar
Auriga
Posts: 78
Joined: Fri Jul 04, 2003 1:29 am
Location: Canada

Postby Auriga » Thu Sep 18, 2003 4:05 am

Lame...

Truly lame.
Efnet Operator..
RIP *.qeast.net I'll miss you! :(
Auriga is qurves slave! (is a Forum moderator)
prefect
Posts: 76
Joined: Mon Jul 14, 2003 6:25 pm
Location: Oslo

Postby prefect » Thu Sep 18, 2003 11:03 am

One thing is cute about this is that major corporations and big isps all over the world are showing that they wont allow this. Several norwegian isps and the biggest .dk isp (afaik) have already patched their nameservers or nullrouted the ip and more follow each day.

I think we'll win this one.
User avatar
munky
Site Admin
Posts: 826
Joined: Wed Jul 02, 2003 4:54 pm
Location: Phoenix AZ
Contact:

Postby munky » Fri Sep 19, 2003 12:33 pm

http://lnks.us/?U0MRQZ
Popular Enterprises Files $100 Million Lawsuit against VeriSign Inc.

KNOXVILLE, Tenn.--(BUSINESS WIRE)--Sept. 18, 2003--Popular Enterprises LLC, the parent company of Netster.com, has filed a $100 million dollar lawsuit against VeriSign, Inc.
The Complaint alleges antitrust violations, unfair competition and violations of the Deceptive and Unfair Trade Practices Act based upon VeriSign's release of the http://sitefinder.verisign.com product.
In God we trust,
Everyone else must have an X.509 certificate.
User avatar
munky
Site Admin
Posts: 826
Joined: Wed Jul 02, 2003 4:54 pm
Location: Phoenix AZ
Contact:

Postby munky » Fri Oct 03, 2003 4:53 pm

In God we trust,
Everyone else must have an X.509 certificate.

Who is online

Users browsing this forum: No registered users and 1 guest