polip: Re: tp dns pharming?

Autor: horhe <skrzynka_na_spam_at_kolekcja.mejor.pl>
Data: Fri 16 Jul 2010 - 14:04:27 MET DST
Message-ID: <i1phsb$4la$3@inews.gazeta.pl>
Content-Type: text/plain; charset="UTF-8"

Marek wrote:

> CzeĹÄ,
>
> Trzeba sobie po prostu porzÄdek zrobiÄ na serwerach autorytatywnych.

Pytam z ciekawoĹci, co masz na mysli?
whois pokazuje:
nameservers: trzcianka.eu.org.
                       ns1.xname.org.
                       fns1.42.pl. [79.98.145.34]
                       ns.takeda.tk.

$ host smtvsat.pl trzcianka.eu.org.
Using domain server:
Name: trzcianka.eu.org.
Address: 80.54.68.5#53
Aliases:

smtvsat.pl has address 80.48.166.116
smtvsat.pl mail is handled by 20 smtvsat.com.pl.
smtvsat.pl mail is handled by 10 smtvsat.pl.

$ host smtvsat.pl ns1.xname.org.
Using domain server:
Name: ns1.xname.org.
Address: 87.98.164.164#53
Aliases:

smtvsat.pl has address 80.48.166.116
smtvsat.pl mail is handled by 20 smtvsat.com.pl.

$ host smtvsat.pl fns1.42.pl.
Using domain server:
Name: fns1.42.pl.
Address: 79.98.145.34#53
Aliases:

smtvsat.pl has address 80.48.166.116
smtvsat.pl mail is handled by 10 smtvsat.pl.
smtvsat.pl mail is handled by 20 smtvsat.com.pl.

$ host smtvsat.pl ns.takeda.tk.
Using domain server:
Name: ns.takeda.tk.
Address: 74.0.89.210#53
Aliases:

smtvsat.pl has address 80.48.166.116
smtvsat.pl mail is handled by 20 smtvsat.com.pl.
smtvsat.pl mail is handled by 10 smtvsat.pl.

Czyli wszÄdzie otrzymujÄ taki sam adres.

Za to dostajÄ dwie rĂłĹźne odpowiedzi od dns2.tpsa.pl:
$ dig smtvsat.pl @194.204.152.34 ns

; <<>> DiG 9.4.3-P5 <<>> smtvsat.pl @194.204.152.34 ns
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 27961
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 0

;; QUESTION SECTION:
;smtvsat.pl. IN NS

;; ANSWER SECTION:
smtvsat.pl. 21233 IN NS fns1.42.pl.
smtvsat.pl. 21233 IN NS trzcianka.one.pl.
smtvsat.pl. 21233 IN NS trzcianka.eu.org.
smtvsat.pl. 21233 IN NS ns1.xname.org.

albo tak:
$ dig smtvsat.pl @194.204.152.34 ns

; <<>> DiG 9.4.3-P5 <<>> smtvsat.pl @194.204.152.34 ns
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 12321
;; flags: qr rd ra; QUERY: 1, ANSWER: 3, AUTHORITY: 0, ADDITIONAL: 3

;; QUESTION SECTION:
;smtvsat.pl. IN NS

;; ANSWER SECTION:
smtvsat.pl. 41206 IN NS trzcianka.eu.org.
smtvsat.pl. 41206 IN NS ns1.xname.org.
smtvsat.pl. 41206 IN NS fns1.42.pl.

;; ADDITIONAL SECTION:
ns1.xname.org. 247 IN A 87.98.164.164
fns1.42.pl. 49756 IN A 79.98.145.34
trzcianka.eu.org. 72853 IN A 80.54.68.5

Oraz offtopicznie:
$ dig smtvsat.pl @dns2.tpsa.pl ns

; <<>> DiG 9.4.3-P5 <<>> smtvsat.pl @dns2.tpsa.pl ns
;; global options: printcmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 42772
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;smtvsat.pl. IN NS

;; Query time: 78 msec
;; SERVER: 2a01:1700:3:ffff::9822#53(2a01:1700:3:ffff::9822)
;; WHEN: Fri Jul 16 13:23:16 2010
;; MSG SIZE rcvd: 28

Pozdrawiam
Received on Fri Jul 16 14:05:02 2010

To archiwum zostało wygenerowane przez hypermail 2.1.8 : Fri 16 Jul 2010 - 14:40:00 MET DST