[unisog] Problems with EDU.COM domain
frnkblk at iname.com
Fri Mar 24 03:57:24 GMT 2006
No lawyers required....the IT director of one of the local schools to whom I
passed this on issue requested Vantage Media to drop them and they were
within the hour.
From: unisog-bounces at lists.sans.org [mailto:unisog-bounces at lists.sans.org]
On Behalf Of Christopher E. Cramer
Sent: Thursday, March 23, 2006 4:36 PM
To: UNIversity Security Operations Group
Subject: Re: [unisog] Problems with EDU.COM domain
interesting. With www.duke.edu.com, I'm finding a third class of web page,
one that says: "That school is not affiliated with this site, and does not
endorse or sponsor this page." That's all that's on the page.
If you go to the parent website (college.us.com) and search for Duke, it has
I'm wondering if we've had a legal run in with these folks.
On Thu, 23 Mar 2006, Alan Amesbury wrote:
> H. Morrow Long wrote:
>> As well as anything at zzz.edu.com such as XXX.ZZZ.EDU.COM
>> They all resolve to the same IP for me (126.96.36.199).
>> Thing is, if you use a name it recognizes (www.yale.edu.com) it
>> presents a Yale University specific web page. If you use a name it
>> doesn't ( http://xxx.zzz.edu.com/ ) you just get a generic
>> advertising page.
> From a technical standpoint, the potential problem I see here is that
> people with hosts that use a misconfigured or broken resolver may end
> up at the *.edu.com sites first. Consider what would happen if your
> resolv.conf search line contained
> search mysite.com com
> Sure, such a configuration is arguable lunacy, but it's not entirely
> out of the realm of possibility. More importantly, some web browsers
> their users out by completing URLs with ".com".
> Something to keep in mind, I guess.
> Alan Amesbury
> University of Minnesota
> unisog mailing list
> unisog at lists.sans.org
unisog mailing list
unisog at lists.sans.org
More information about the unisog