cR0w, 1 year ago to random

I'm trying to make sense of something I've been seeing and hope someone here can enlighten me.

Lookalike domains are nothing new. It's been common to see something like gооgle[.]com ( note the Cyrillic 'о' characters instead of the Latin 'o' expected in google, encoded as 'xn--ggle-55da[.]com' ) to appear to be google[.]com . Lately, I've been seeing things like google[.]cоm ( note the Cyrillic 'о' in 'cоm' instead of the Latin 'o', encoded as google[.]xn--cm-fmc ).

What is the point of the lookalike TLD? It's not going to publicly resolve anywhere, right? It seems like it's likely to be a typo. If a TA was using the impersonated domain's infrastructure and mistyped the TLD, the targets won't resolve and it's game over. If the typo is from a legitimate representative of the accidentally impersonated domain, then it's just an oops. No harm, no foul.

Am I missing something here? It seems like it's simply a typo happening multiple times, but I don't want to assume just because I don't understand the potential.

#threatintel #cti #dns

to3k, 1 year ago to fediverse Polish

🇵🇱 Nowy wpis na blogu! / 🇬🇧 New blog post!

YunoHost – How to run WriteFreely instance [ENG 🇬🇧]

#a #aaaa #activitypub #blog #caa #cloudflare #dns #fediverse #https #mx #opensource #oracle #proxy #selfhosted #ssl #txt #vps #writefreely #yunohost

Autor: @to3k

https://blog.tomaszdunia.pl/yunohost-writefreely-eng/

to3k, 1 year ago to fediverse Polish

🇵🇱 Nowy wpis na blogu! / 🇬🇧 New blog post!

YunoHost – jak uruchomić instancję WriteFreely

#a #aaaa #activitypub #blog #caa #cloudflare #dns #fediverse #https #mx #opensource #oracle #proxy #selfhosted #ssl #txt #vps #writefreely #yunohost

Autor: @to3k

https://blog.tomaszdunia.pl/yunohost-writefreely/

shawnhooper, 1 year ago to random

I just found out one of my domain registrars, register.to, no longer exists, due to the death of it's owner earlier this year.

https://domainnamewire.com/2023/03/02/to-registry-assures-register-to-customers-that-their-domains-are-safe/

It appears their billing system is still trying to charge customers cards though.

#dns #domains

nlnetlabs, 1 year ago to random

Simdzone, our super fast #DNS zone file parser, will be maintained as a standalone project. We now took another step towards a releasing as part of NSD with support for makefile based builds. https://github.com/NLnetLabs/simdzone/issues/11

dnsoarc, 1 year ago to random

#OARC41 will be a two-day hybrid meeting, on September 6th and 7th, and co-located with the #ICANN DNS Symposium in Asia.

The Programme Committee is seeking contributions from the community on all #DNS related subjects.

Submissions are due by June 10th and should include slides, with a deadline for slideset submission and rehearsal on August 8th.

Details for presentation submission are published at: https://www.dns-oarc.net/oarc41.

#LoveDNS ^RP

image/png

Decentralize_today, 1 year ago to random

Block trackers and ads via DNS

Android

Settings → Network & Internet → Private DNS → Private DNS provider hostname

You can use any of the DNS providers you trust. good choices:

doh.mullvad.net

dnsforge.de

dot-ch.blahdns.com

iOS, select a DNS provider you trust, perhaps AdGuard or dismail, click install profile and install it.

Settings → General → VPN and Network → DNS

and select the newly installed profile as your DNS.

Now you have encrypted #DNS, but also an ad and malware blocker.

infosec_jobs, 1 year ago to infosec

HIRING: Cloud Support Engineer - Database Security and Authentication Management / Tokyo, Japan https://infosec-jobs.com/J29430/ #InfoSec #InfoSecJobs #Cybersecurity #jobsearch #hiringnow #CyberCareers #Tokyo #Japan #AWS #Azure #Cloud #DNS #GCP #IAM #Java #Linux #Python #TCPIP

adam, 1 year ago to linux

Is there really no #Linux #firewall that can allow or block FQDNs or domains?

iptables doesn't do it, and #ufw is just a frontend for #iptables. What else is out there for #Debian based machines?

For context: I've been around Linux since the days of ipchains. I know the #OSI model and run my own #DNS servers (primary, secondary, and resolving/caching) so there's no need to explain why this feature is non-trivial to implement

Most other OSes have this feature and it's pretty reasonable to want

jtk, 1 year ago to rust

Weekend Reads:

• Rust vs. Javascript https://joshmo.hashnode.dev/can-rust-beat-javascript-in-2023
• DNS Rebinding in 2023 https://research.nccgroup.com/2023/04/27/state-of-dns-rebinding-in-2023/
• Python and Jupyter book https://learnpythonwithjupyter.com/assets/book/learn_python_with_jupyter.pdf
• Cyber conflict trends in RU/UK war https://strapi.eurepoc.eu/uploads/One_Year_of_Hostilities_in_Ukraine_59f3e36897.pdf
• Conti ransomware business analysis https://arxiv.org/abs/2304.11681

#Rust #Javascript #DNS #Python #Jupyter #RU #UA #Conti #Ransomware

jtk, 1 year ago to random

Internet.bs domain name registration price increase announcement:

"[...] we have faced the challenges of inflation and escalating supplier expenses. Although we have absorbed some of the price hikes from our providers in the past, our costs have continued to surge. [...] we need to modify our domain pricing."

https://internetbs.centralnicgroup.com/updated-domain-prices

#DNS

nlnetlabs, 1 year ago to opensource

Jeroen is working on an individual #IETF Internet-Draft "Zone file format". The document aims to remove ambiguity from the master file, or zone file, format originally specified in RFC1034 and RFC1035. #DNS #OpenStandards #OpenSource

Suggestions and contributions are very welcome!
https://github.com/NLnetLabs/draft-koekkoek-dnsop-zone-file-format

bortzmeyer, 1 year ago to random French

L'association #FDN a récemment annoncé que son service de résolveur #DNS public était désormais accessible avec les protocoles de sécurité #DoT et #DoH, ce qui améliore grandement ce service. https://www.bortzmeyer.org/fdn-dot-doh.html

kas, 1 year ago to random

🔗 https://nat64.net/

Could be useful on IPv6-only VPSes.

/cc [#IPv6 | #DNS64 | #NAT64 | #DNS | #bookmark 🔖 ]

dataplane, 1 year ago to random

The Internet Last Week

• ARIN 51 meeting
  https://www.arin.net/participate/meetings/ARIN51/
• Afraid.org Free DNS disruption
  https://www.reddit.com/r/sysadmin/comments/12rksq5/looks_like_freednsafraidorg_is_down/
  https://freedns.afraid.org/news/
• Sudan Internet disruption
  https://mastodon.social/@netblocks/110245391449669838
  https://twitter.com/IP_Observatory/status/1650360067370418176
  https://twitter.com/DougMadory/status/1650478963578290176

#ARIN51 #DNS #Sudan #SD

tierce, 1 year ago to random French

@bortzmeyer Yunohost offre des (sous)domaines en .noho.st, ynh.st ou comme le fait eu.org.

Yahoo® teste si bidule.nohost.me a un SOA si non, rejette le mail. Voir Unresolvable RFC.5321 from domain sur https://senders.yahooinc.com/smtp-error-codes/

C'est techniquement possible de mettre en place un SOA par (sous)domaine ?

cc @yunohost @ffdn

#dns #soa #yahoo #mail #smtp

shaft, 1 year ago to random

It's getting somewhere #DNS

$ python3 check_soa.py --nsid --ns ns1.shaftinc.fr,ns2.shaftinc.fr --tls shaftinc.fr
ns1.shaftinc.fr
51.178.53.118 [Yuggoth]: OK: 2023042101
2001:41d0:404:200::49e1 [Yuggoth]: OK: 2023042101
ns2.shaftinc.fr
136.244.112.196 [R'lyeh]: OK: 2023042101
2a05:f480:1c00:28a:5400:2ff:fee7:316f [R'lyeh]: OK: 2023042101

jtk, 1 year ago to fediverse

Weekend Reads:

• NATs and STUN https://educatedguesswork.org/posts/nat-part-2/
• The public suffic list https://www.m3aawg.org/sites/default/files/images/m3aawg_present_and_future_of_the_public_suffix_list.docx.pdf
• ZONEMD in the root zone https://blog.verisign.com/security/root-zone-zonemd/
• ActivityPub hype and hope https://www.theverge.com/2023/4/20/23689570/activitypub-protocol-standard-social-network
• Scaling fiber with topological confinement https://www.science.org/doi/10.1126/science.add1874

#NAT #STUN #DNS #ActivityPub #fiberoptics

thegurkha, 1 year ago to random

The #DNS server you're using has a direct impact on your privacy.

https://www.howtogeek.com/874773/the-best-dns-servers-for-secure-browsing/

username, 1 year ago to random

Sony abusing promoting censorship over internet, attacking dns service @quad9dns

https://odysee.com/@NaomiBrockwell:4/Sony-v-internet:e

#sony #censorship #dns #quad9

to3k, 1 year ago to fediverse Polish

🇵🇱 Nowy wpis na blogu! / 🇬🇧 New blog post!

Mastodon’s own instance for non-techies [ENG 🇬🇧]

#101010pl #digitalocean #dns #droplet #fediverse #infosecexchange #instance #managedhosting #mastohost #mastodon #mikrus #opensource #oracle #ossrox #proxmox #raspberrypi #relay #retention #revolut #vps #yunohost

Autor: @to3k

https://blog.tomaszdunia.pl/wlasna-instancja-mastodona-eng/

quad9dns, 1 year ago to random

The Danger of Content Blocking Measures by #DNS Recursive Resolvers

https://www.quad9.net/news/blog/dangers-of-content-blocking-2023

horse, 1 year ago to random

Awwww yah, I'm speaking @BSidesCharm again this year! But this time around I'll be joined on stage by @JimSycurity, and I could not be more psyched. We'll be talking about the unholy couple that is Active Directory and DNS.

#BSides #BSidesCharm #AMatchMadeInHeck #ActiveDirectory #DNS

kwf, 1 year ago to selfhosted

It looks like https://ns-global.zone/ is serving 558 domains at the moment. I am the most amused that we are one of the authoritative DNS servers for the Internet Archive. #DNS #networking #selfhosted

$ sqlite3 /var/nsg/db.sqlite "select domain from zones;" | wc -l
558

yomimono, 1 year ago to crossstitch

The border's not that elaborate, but it is finished! #crossStitch #dns #finishedObject