Security guard server cache poisoning and domain hijackingPosted by: admin | Posted on: March 10, 2017
China IDC circle reported on June 23rd: the issue of domain name fraud is also an important part of the organization to solve. Not long ago, there was a hacker fraud customer service representative to modify the IP address of the main domain name server Hushmail. For now, Hushmail’s CTO Brian Smith has been offended, so easily deceived the hacker domain registrar customer service representative, this really annoying.
Smith said: "this is really bad for us. I would like to see the development and publication of better security policy. However, I can not find a registrar to do so, since this incident, I have been looking for such a registered business."
Panix.com President Alex Resin in terms of registration problems, leading to the January Panix domain name was hijacked, but also felt the same strong dissatisfaction. First of all, his registrar sold his domain name to a reseller without prior notice. The dealer then transferred the domain name to a social engineer – and did not notify Resin.
Resin said: "the domain name system requires a systematic, fundamental reform. There are a lot of suggestions, but things are not going fast enough."
wait for market demand and ICANN leadership to force the Registrar to implement a safe transfer policy, it will take a long time. As a result, Resin, Smith and ICANN chief registrar contact officer Tim Cole proposed the following risk reduction recommendations:
1, require your registrar to issue a written, enforceable policy statement. If you need to transfer the domain name, ask them to contact you in writing the terms of the written documents.
2, lock the domain name, require the Registrar to get the unlock password or other identity information before allowing transfer.
3 allows you to keep the official contact information from the Registrar in the latest state.
4, choose to provide 24× the Registrar of the 7 services, so that they can take action in the event of violations.
5, if unauthorized transfer occurs, immediately contact the registrar.
6, if your problem is not resolved, go to your domain name registrar (for example, VeriSign). COM and. Net registration).
7, if you still have problems with your domain name, contact ICANN ([email protected]).
8, if you have a large domain, it is like Google, to become their own Registrar or their dealers, the use of TuCows.com’s open API, OpenSRS to control your