1. Forum
  2. Newsgroups
  3. comp.protocols.dns.bind

  • VS: DNS Misconfiguration on- http://cyberia.net.sa/

    From Jukka Pakkanen@jukka.pakkanen@qnet.fi to bind-users@lists.isc.org on Fri Jun 5 09:24:00 2020
    From Newsgroup: comp.protocols.dns.bind

    --_000_ca6936357773475f8d6b8a3d160adebeqnetfi_
    Content-Type: text/plain; charset="utf-8"
    Content-Transfer-Encoding: base64

    Q29tcGxldGUgc2NhbSwgaWdub3JlLg0KDQpKdXN0IGNoZWNrIHRoZSDigJxzZWN1cml0eWZvY3Vz 4oCdIGxpbmssIGl04oCZcyBmYWtlIHRvby4NCg0KSnVra2ENCg0KTMOkaGV0dMOkasOkOiBiaW5k LXVzZXJzIDxiaW5kLXVzZXJzLWJvdW5jZXNAbGlzdHMuaXNjLm9yZz4gUHVvbGVzdGEgRWpheiBB aG1lZA0KTMOkaGV0ZXR0eTogNS4ga2Vzw6RrdXV0YSAyMDIwIDEwOjU1DQpWYXN0YWFub3R0YWph OiBiaW5kLXVzZXJzQGxpc3RzLmlzYy5vcmcNCkFpaGU6IEZ3ZDogRE5TIE1pc2NvbmZpZ3VyYXRp b24gb24tIGh0dHA6Ly9jeWJlcmlhLm5ldC5zYS8NCg0KDQoNClNvbWUgb25lIGlzIGlzIGNsYWlt aW5nIHRoYXQgb3VyIG5hbWUgc2VydmVyIDIxMi4xMTguNjQuMiBpcyB2dWxuZXJhYmxlIHdpdGgg YmVsb3cgaW5mb3JtYXRpb24gaXMgdGhpcyB0cnVlDQoNCkFueSBzdWdnZXN0aW9ucyB3b3VsZCBi ZSBhcHByZWNpYXRlZA0KDQpUaGFua3MgYSBuIGFkdmFuY2UNCg0KRWpheg0KDQoNCg0KRGVhciBD WUJFUklBIEdST1VQIFNlY3VyaXR5IFRlYW0gLA0KDQpJIFJhaHVsIGEgRXRoaWNhbCBIYWNrZXIg YW5kIFNlY3VyaXR5IFJlc2VhcmNoZXIuIEkgZm91bmQgYSB2dWxuZXJhYmlsaXR5IG9uIHlvdXIg d2Vic2l0ZSB0aGF0IGlzIEROUyBNaXNjb25maWd1cmF0aW9uIC4NCg0KWW91ciBsb2NhbGhvc3Qu Y3liZXJpYS5uZXQuc2E8aHR0cDovL2xvY2FsaG9zdC5jeWJlcmlhLm5ldC5zYT4gICBoYXMgYWRk cmVzcyAxMjcuMC4wLjEgYW5kIHRoaXMgbWF5IGxlYWQgdG8gIlNhbWUtIFNpdGUiIFNjcmlwdGlu Zy4gSSBjYW4gYWxzbyBwaW5nIHRoZSBsb2NhbGhvc3QgbmV0d29yay4NCg0KDQpIZXJlIGlzIGRl dGFpbGVkIGRlc2NyaXB0aW9uIG9mIHRoaXMgbWlub3Igc2VjdXJpdHkgaXNzdWUgOiBodHRwOi8v d3d3LnNlY3VyaXR5Zm9jdXMuY29tL2FyY2hpdmUvMS80ODY2MDYvMzAvMC90aHJlYWRlZDxodHRw czovL2hhY2tlcm9uZS5jb20vcmVkaXJlY3Q/c2lnbmF0dXJlPWYyMjY1NmRkNWFmZWE3ODI0MTA5 NzljZGQzZmJiOTUxZjgxOWM4MmUmdXJsPWh0dHAlM0ElMkYlMkZ3d3cuc2VjdXJpdHlmb2N1cy5j b20lMkZhcmNoaXZlJTJGMSUyRjQ4NjYwNiUyRjMwJTJGMCUyRnRocmVhZGVkPg0KDQpGaW5kIGF0 dGFjaGVkIFBPQyAgVmlkZW8uDQoNCkRlYXIgVGVhbSBXYWl0aW5nIGZvciB5b3VyIHJlc3BvbnNl IGFuZCBJIHdhbnQgYm91bnR5KG1vbmV5KSB3aXRoIGFuIEFwcHJlY2lhdGlvbiBsZXR0ZXIgZm9y IG15IHdvcmsgYW5kIGVmZm9ydCB3aGljaCBJIGhhdmUgZ2l2ZW4gZm9yDQoNCg0KVGhhbmtzIGlu IGFkdmFuY2UNCkVqYXoNCg0KDQoNCg0KDQoNCg0K

    --_000_ca6936357773475f8d6b8a3d160adebeqnetfi_
    Content-Type: text/html; charset="utf-8"
    Content-Transfer-Encoding: base64

    PGh0bWwgeG1sbnM6dj0idXJuOnNjaGVtYXMtbWljcm9zb2Z0LWNvbTp2bWwiIHhtbG5zOm89InVy bjpzY2hlbWFzLW1pY3Jvc29mdC1jb206b2ZmaWNlOm9mZmljZSIgeG1sbnM6dz0idXJuOnNjaGVt YXMtbWljcm9zb2Z0LWNvbTpvZmZpY2U6d29yZCIgeG1sbnM6bT0iaHR0cDovL3NjaGVtYXMubWlj cm9zb2Z0LmNvbS9vZmZpY2UvMjAwNC8xMi9vbW1sIiB4bWxucz0iaHR0cDovL3d3dy53My5vcmcv VFIvUkVDLWh0bWw0MCI+DQo8aGVhZD4NCjxtZXRhIGh0dHAtZXF1aXY9IkNvbnRlbnQtVHlwZSIg Y29udGVudD0idGV4dC9odG1sOyBjaGFyc2V0PXV0Zi04Ij4NCjxtZXRhIG5hbWU9IkdlbmVyYXRv ciIgY29udGVudD0iTWljcm9zb2Z0IFdvcmQgMTUgKGZpbHRlcmVkIG1lZGl1bSkiPg0KPHN0eWxl PjwhLS0NCi8qIEZvbnQgRGVmaW5pdGlvbnMgKi8NCkBmb250LWZhY2UNCgl7Zm9udC1mYW1pbHk6 IkNhbWJyaWEgTWF0aCI7DQoJcGFub3NlLTE6MiA0IDUgMyA1IDQgNiAzIDIgNDt9DQpAZm9udC1m YWNlDQoJe2ZvbnQtZmFtaWx5OkNhbGlicmk7DQoJcGFub3NlLTE6MiAxNSA1IDIgMiAyIDQgMyAy IDQ7fQ0KQGZvbnQtZmFjZQ0KCXtmb250LWZhbWlseToiQXJpYWwgQmxhY2siOw0KCXBhbm9zZS0x OjIgMTEgMTAgNCAyIDEgMiAyIDIgNDt9DQovKiBTdHlsZSBEZWZpbml0aW9ucyAqLw0KcC5Nc29O b3JtYWwsIGxpLk1zb05vcm1hbCwgZGl2Lk1zb05vcm1hbA0KCXttYXJnaW46MGNtOw0KCW1hcmdp bi1ib3R0b206LjAwMDFwdDsNCglmb250LXNpemU6MTEuMHB0Ow0KCWZvbnQtZmFtaWx5OiJDYWxp YnJpIixzYW5zLXNlcmlmO30NCmE6bGluaywgc3Bhbi5Nc29IeXBlcmxpbmsNCgl7bXNvLXN0eWxl LXByaW9yaXR5Ojk5Ow0KCWNvbG9yOmJsdWU7DQoJdGV4dC1kZWNvcmF0aW9uOnVuZGVybGluZTt9 DQpzcGFuLlNoa3Bvc3RpdHl5bGkxOQ0KCXttc28tc3R5bGUtdHlwZTpwZXJzb25hbC1yZXBseTsN Cglmb250LWZhbWlseToiQ2FsaWJyaSIsc2Fucy1zZXJpZjsNCgljb2xvcjp3aW5kb3d0ZXh0O30N Ci5Nc29DaHBEZWZhdWx0DQoJe21zby1zdHlsZS10eXBlOmV4cG9ydC1vbmx5Ow0KCWZvbnQtZmFt aWx5OiJDYWxpYnJpIixzYW5zLXNlcmlmOw0KCW1zby1mYXJlYXN0LWxhbmd1YWdlOkVOLVVTO30N CkBwYWdlIFdvcmRTZWN0aW9uMQ0KCXtzaXplOjYxMi4wcHQgNzkyLjBwdDsNCgltYXJnaW46NzAu ODVwdCAyLjBjbSA3MC44NXB0IDIuMGNtO30NCmRpdi5Xb3JkU2VjdGlvbjENCgl7cGFnZTpXb3Jk U2VjdGlvbjE7fQ0KLS0+PC9zdHlsZT48IS0tW2lmIGd0ZSBtc28gOV0+PHhtbD4NCjxvOnNoYXBl ZGVmYXVsdHMgdjpleHQ9ImVkaXQiIHNwaWRtYXg9IjEwMjYiIC8+DQo8L3htbD48IVtlbmRpZl0t LT48IS0tW2lmIGd0ZSBtc28gOV0+PHhtbD4NCjxvOnNoYXBlbGF5b3V0IHY6ZXh0PSJlZGl0Ij4N CjxvOmlkbWFwIHY6ZXh0PSJlZGl0IiBkYXRhPSIxIiAvPg0KPC9vOnNoYXBlbGF5b3V0PjwveG1s PjwhW2VuZGlmXS0tPg0KPC9oZWFkPg0KPGJvZHkgbGFuZz0iRkkiIGxpbms9ImJsdWUiIHZsaW5r PSJwdXJwbGUiPg0KPGRpdiBjbGFzcz0iV29yZFNlY3Rpb24xIj4NCjxwIGNsYXNzPSJNc29Ob3Jt YWwiPjxzcGFuIGxhbmc9IkVOLVVTIiBzdHlsZT0ibXNvLWZhcmVhc3QtbGFuZ3VhZ2U6RU4tVVMi PkNvbXBsZXRlIHNjYW0sIGlnbm9yZS48YnI+DQo8YnI+DQpKdXN0IGNoZWNrIHRoZSDigJxzZWN1 cml0eWZvY3Vz4oCdIGxpbmssIGl04oCZcyBmYWtlIHRvby48YnI+DQo8YnI+DQpKdWtrYTxvOnA+ PC9vOnA+PC9zcGFuPjwvcD4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPjxzcGFuIGxhbmc9IkVOLVVT IiBzdHlsZT0ibXNvLWZhcmVhc3QtbGFuZ3VhZ2U6RU4tVVMiPjxvOnA+Jm5ic3A7PC9vOnA+PC9z cGFuPjwvcD4NCjxkaXYgc3R5bGU9ImJvcmRlcjpub25lO2JvcmRlci10b3A6c29saWQgI0UxRTFF MSAxLjBwdDtwYWRkaW5nOjMuMHB0IDBjbSAwY20gMGNtIj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwi PjxiPkzDpGhldHTDpGrDpDo8L2I+IGJpbmQtdXNlcnMgJmx0O2JpbmQtdXNlcnMtYm91bmNlc0Bs aXN0cy5pc2Mub3JnJmd0Ow0KPGI+UHVvbGVzdGEgPC9iPkVqYXogQWhtZWQ8YnI+DQo8Yj5Mw6Ro ZXRldHR5OjwvYj4gNS4ga2Vzw6RrdXV0YSAyMDIwIDEwOjU1PGJyPg0KPGI+VmFzdGFhbm90dGFq YTo8L2I+IGJpbmQtdXNlcnNAbGlzdHMuaXNjLm9yZzxicj4NCjxiPkFpaGU6PC9iPiBGd2Q6IERO UyBNaXNjb25maWd1cmF0aW9uIG9uLSBodHRwOi8vY3liZXJpYS5uZXQuc2EvPG86cD48L286cD48 L3A+DQo8L2Rpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0K PGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+ DQo8ZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tYm90dG9t OjEyLjBwdCI+PG86cD4mbmJzcDs8L286cD48L3A+DQo8ZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJN c29Ob3JtYWwiPlNvbWUgb25lIGlzIGlzIGNsYWltaW5nIHRoYXQgb3VyIG5hbWUgc2VydmVyIDIx Mi4xMTguNjQuMiBpcyB2dWxuZXJhYmxlIHdpdGggYmVsb3cgaW5mb3JtYXRpb24gaXMgdGhpcyB0 cnVlPG86cD48L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48 bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwi PkFueSBzdWdnZXN0aW9ucyB3b3VsZCBiZSBhcHByZWNpYXRlZCZuYnNwOzxvOnA+PC9vOnA+PC9w Pg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+PG86cD4mbmJzcDs8L286cD48 L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj5UaGFua3MgYSBuIGFkdmFu Y2UmbmJzcDs8bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdj4NCjxw IGNsYXNzPSJNc29Ob3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0K PHAgY2xhc3M9Ik1zb05vcm1hbCI+RWpheiZuYnNwOzxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8 L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpwPjwvcD4N CjxkaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+PG86cD4mbmJzcDs8L286cD48L3A+ DQo8L2Rpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiIHN0eWxlPSJtYXJnaW4tYm90dG9tOjEyLjBw dCI+PG86cD4mbmJzcDs8L286cD48L3A+DQo8ZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3Jt YWwiPkRlYXIgQ1lCRVJJQSBHUk9VUCBTZWN1cml0eSBUZWFtICw8bzpwPjwvbzpwPjwvcD4NCjwv ZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0K PC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+SSBSYWh1bCBhIEV0aGljYWwgSGFj a2VyIGFuZCBTZWN1cml0eSBSZXNlYXJjaGVyLiBJIGZvdW5kIGEgdnVsbmVyYWJpbGl0eSBvbiB5 b3VyIHdlYnNpdGUgdGhhdCBpcyBETlMgTWlzY29uZmlndXJhdGlvbiAuPG86cD48L286cD48L3A+ DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpwPjwv cD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPllvdXIgPGI+PGEgaHJlZj0i aHR0cDovL2xvY2FsaG9zdC5jeWJlcmlhLm5ldC5zYSIgdGFyZ2V0PSJfYmxhbmsiPmxvY2FsaG9z dC5jeWJlcmlhLm5ldC5zYTwvYT4mbmJzcDsmbmJzcDsNCjwvYj5oYXMgYWRkcmVzcyAxMjcuMC4w LjEgYW5kIHRoaXMgbWF5IGxlYWQgdG8gJnF1b3Q7U2FtZS0gU2l0ZSZxdW90OyBTY3JpcHRpbmcu IEkgY2FuIGFsc28gcGluZyB0aGUgbG9jYWxob3N0IG5ldHdvcmsuDQo8bzpwPjwvbzpwPjwvcD4N CjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjwvZGl2 Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPC9k aXY+DQo8ZGl2Pg0KPGRpdj4NCjxkaXY+DQo8ZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3Jt YWwiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTAuMHB0O2ZvbnQtZmFtaWx5OiZxdW90O0FyaWFs IEJsYWNrJnF1b3Q7LHNhbnMtc2VyaWY7Y29sb3I6YmxhY2siPkhlcmUgaXMgZGV0YWlsZWQgZGVz Y3JpcHRpb24gb2YgdGhpcyBtaW5vciBzZWN1cml0eSBpc3N1ZSA6PGI+DQo8YSBocmVmPSJodHRw czovL2hhY2tlcm9uZS5jb20vcmVkaXJlY3Q/c2lnbmF0dXJlPWYyMjY1NmRkNWFmZWE3ODI0MTA5 NzljZGQzZmJiOTUxZjgxOWM4MmUmYW1wO3VybD1odHRwJTNBJTJGJTJGd3d3LnNlY3VyaXR5Zm9j dXMuY29tJTJGYXJjaGl2ZSUyRjElMkY0ODY2MDYlMkYzMCUyRjAlMkZ0aHJlYWRlZCIgdGFyZ2V0 PSJfYmxhbmsiIHRpdGxlPSJodHRwOi8vd3d3LnNlY3VyaXR5Zm9jdXMuY29tL2FyY2hpdmUvMS80 ODY2MDYvMzAvMC90aHJlYWRlZCI+DQpodHRwOi8vd3d3LnNlY3VyaXR5Zm9jdXMuY29tL2FyY2hp dmUvMS80ODY2MDYvMzAvMC90aHJlYWRlZDwvYT48L2I+PC9zcGFuPjxvOnA+PC9vOnA+PC9wPg0K PC9kaXY+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPjxvOnA+ Jm5ic3A7PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8ZGl2Pg0KPGRpdj4NCjxk aXY+DQo8ZGl2Pg0KPGRpdj4NCjxkaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+PGI+ PHNwYW4gc3R5bGU9ImNvbG9yOnJlZCI+RmluZCBhdHRhY2hlZCBQT0MmbmJzcDsgVmlkZW8uIDwv c3Bhbj4NCjwvYj48bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPC9kaXY+DQo8L2Rpdj4NCjwvZGl2 Pg0KPC9kaXY+DQo8L2Rpdj4NCjwvZGl2Pg0KPC9kaXY+DQo8L2Rpdj4NCjxkaXY+DQo8ZGl2Pg0K PGRpdj4NCjxkaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+PG86cD4mbmJzcDs8L286 cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48Yj48c3BhbiBzdHls ZT0iZm9udC1zaXplOjEwLjBwdDtjb2xvcjpibGFjayI+RGVhciBUZWFtIFdhaXRpbmcgZm9yIHlv dXIgcmVzcG9uc2UgYW5kDQo8L3NwYW4+PC9iPjxiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTAu MHB0O2ZvbnQtZmFtaWx5OiZxdW90O0FyaWFsIEJsYWNrJnF1b3Q7LHNhbnMtc2VyaWY7Y29sb3I6 YmxhY2siPkkgd2FudCBib3VudHkobW9uZXkpIHdpdGggYW4gQXBwcmVjaWF0aW9uIGxldHRlciBm b3IgbXkgd29yayBhbmQgZWZmb3J0IHdoaWNoIEkgaGF2ZSBnaXZlbiBmb3ImbmJzcDs8L3NwYW4+ PC9iPjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+ PG86cD4mbmJzcDs8L286cD48L3A+DQo8L2Rpdj4NCjxkaXY+DQo8cCBjbGFzcz0iTXNvTm9ybWFs Ij48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNzPSJNc29Ob3Jt YWwiPjxiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTAuMHB0O2ZvbnQtZmFtaWx5OiZxdW90O0Fy aWFsIEJsYWNrJnF1b3Q7LHNhbnMtc2VyaWY7Y29sb3I6YmxhY2siPlRoYW5rcyBpbiBhZHZhbmNl Jm5ic3A7PC9zcGFuPjwvYj48bzpwPjwvbzpwPjwvcD4NCjwvZGl2Pg0KPGRpdj4NCjxwIGNsYXNz PSJNc29Ob3JtYWwiPjxiPjxzcGFuIHN0eWxlPSJmb250LXNpemU6MTAuMHB0O2ZvbnQtZmFtaWx5 OiZxdW90O0FyaWFsIEJsYWNrJnF1b3Q7LHNhbnMtc2VyaWY7Y29sb3I6YmxhY2siPkVqYXombmJz cDs8L3NwYW4+PC9iPjxvOnA+PC9vOnA+PC9wPg0KPC9kaXY+DQo8L2Rpdj4NCjwvZGl2Pg0KPC9k aXY+DQo8L2Rpdj4NCjwvZGl2Pg0KPGRpdj4NCjxkaXY+DQo8ZGl2Pg0KPGRpdj4NCjxkaXY+DQo8 ZGl2Pg0KPGRpdj4NCjxkaXY+DQo8ZGl2Pg0KPHAgY2xhc3M9Ik1zb05vcm1hbCI+PG86cD4mbmJz cDs8L286cD48L3A+DQo8L2Rpdj4NCjwvZGl2Pg0KPC9kaXY+DQo8L2Rpdj4NCjwvZGl2Pg0KPC9k aXY+DQo8L2Rpdj4NCjwvZGl2Pg0KPC9kaXY+DQo8ZGl2Pg0KPGRpdj4NCjxkaXY+DQo8ZGl2Pg0K PGRpdj4NCjxwIGNsYXNzPSJNc29Ob3JtYWwiPjxvOnA+Jm5ic3A7PC9vOnA+PC9wPg0KPHRhYmxl IGNsYXNzPSJNc29Ob3JtYWxUYWJsZSIgYm9yZGVyPSIwIiBjZWxsc3BhY2luZz0iMCIgY2VsbHBh ZGRpbmc9IjAiIHN0eWxlPSJib3JkZXItY29sbGFwc2U6Y29sbGFwc2UiPg0KPHRib2R5Pg0KPHRy IHN0eWxlPSJoZWlnaHQ6NDEuMjVwdCI+DQo8dGQgdmFsaWduPSJ0b3AiIHN0eWxlPSJib3JkZXI6 c29saWQgd2hpdGUgMS4wcHQ7cGFkZGluZzo1LjBwdCA1LjBwdCA1LjBwdCA1LjBwdDtoZWlnaHQ6 NDEuMjVwdDtvdmVyZmxvdzpoaWRkZW4iPg0KPC90ZD4NCjwvdHI+DQo8dHIgc3R5bGU9ImhlaWdo dDoxNDEuMHB0Ij4NCjx0ZCB2YWxpZ249InRvcCIgc3R5bGU9ImJvcmRlcjpzb2xpZCB3aGl0ZSAx LjBwdDtib3JkZXItdG9wOm5vbmU7cGFkZGluZzo1LjBwdCA1LjBwdCA1LjBwdCA1LjBwdDtoZWln aHQ6MTQxLjBwdDtvdmVyZmxvdzpoaWRkZW4iPg0KPHAgc3R5bGU9Im1hcmdpbjowY207bWFyZ2lu LWJvdHRvbTouMDAwMXB0Ij48bzpwPiZuYnNwOzwvbzpwPjwvcD4NCjwvdGQ+DQo8L3RyPg0KPC90 Ym9keT4NCjwvdGFibGU+DQo8cCBjbGFzcz0iTXNvTm9ybWFsIj48bzpwPiZuYnNwOzwvbzpwPjwv cD4NCjwvZGl2Pg0KPC9kaXY+DQo8L2Rpdj4NCjwvZGl2Pg0KPC9kaXY+DQo8L2Rpdj4NCjwvZGl2 Pg0KPC9kaXY+DQo8L2Rpdj4NCjwvZGl2Pg0KPC9kaXY+DQo8L2JvZHk+DQo8L2h0bWw+DQo=

    --_000_ca6936357773475f8d6b8a3d160adebeqnetfi_--
    --- Synchronet 3.18a-Linux NewsLink 1.113
  • From Jukka Pakkanen@jukka.pakkanen@qnet.fi to =?utf-8?B?T25kxZllaiBTdXLDvQ==?= on Fri Jun 5 10:10:38 2020
    From Newsgroup: comp.protocols.dns.bind

    Thx for the info, had missed this one and actually we have that minor misconfiguration too. Have had since 1995 when started our nameservers and never noticed...

    Jukka

    -----Alkuperäinen viesti-----
    Lähettäjä: Ondřej Surý <ondrej@isc.org>
    Lähetetty: 5. kesäkuuta 2020 11:53
    Vastaanottaja: Jukka Pakkanen <jukka.pakkanen@qnet.fi>
    Kopio: Ejaz Ahmed <mejaz@cyberia.net.sa>; bind-users@lists.isc.org
    Aihe: Re: DNS Misconfiguration on- http://cyberia.net.sa/

    The localhost.<foo> is not scam, but the

    „I found this on HackerOne and I now want money“ is scam.

    Remove the localhost entry from the zone, but you should not pay money for issues that can be produced by automated scanners.

    HackerOne is doing everyone disfavor by paying nonsensical amounts of money[*] for small issues like this. They (and other wealthy companies) should be paying money only for original security research and not this nonsense.

    * $100 is a helluva money in some economies...

    Ondrej
    --
    Ondřej Surý
    ondrej@isc.org

    On 5 Jun 2020, at 11:24, Jukka Pakkanen <jukka.pakkanen@qnet.fi> wrote:

    Complete scam, ignore.

    Just check the “securityfocus” link, it’s fake too.

    Jukka

    Lähettäjä: bind-users <bind-users-bounces@lists.isc.org> Puolesta Ejaz Ahmed
    Lähetetty: 5. kesäkuuta 2020 10:55
    Vastaanottaja: bind-users@lists.isc.org
    Aihe: Fwd: DNS Misconfiguration on- http://cyberia.net.sa/




    Some one is is claiming that our name server 212.118.64.2 is
    vulnerable with below information is this true

    Any suggestions would be appreciated

    Thanks a n advance

    Ejaz




    Dear CYBERIA GROUP Security Team ,

    I Rahul a Ethical Hacker and Security Researcher. I found a vulnerability on your website that is DNS Misconfiguration .

    Your localhost.cyberia.net.sa has address 127.0.0.1 and this may lead to "Same- Site" Scripting. I can also ping the localhost network.


    Here is detailed description of this minor security issue : http://www.securityfocus.com/archive/1/486606/30/0/threaded

    Find attached POC Video.

    Dear Team Waiting for your response and I want bounty(money) with an Appreciation letter for my work and effort which I have given for


    Thanks in advance
    Ejaz




    _______________________________________________
    Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

    ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.


    bind-users mailing list
    bind-users@lists.isc.org
    https://lists.isc.org/mailman/listinfo/bind-users

    --- Synchronet 3.18a-Linux NewsLink 1.113
  • From Tony Finch@dot@dotat.at to Jukka Pakkanen on Fri Jun 5 15:08:52 2020
    From Newsgroup: comp.protocols.dns.bind

    Jukka Pakkanen <jukka.pakkanen@qnet.fi> wrote:

    Thx for the info, had missed this one and actually we have that minor misconfiguration too. Have had since 1995 when started our nameservers
    and never noticed...

    Yes, it used to be recommended -
    https://tools.ietf.org/html/rfc1537#section-10

    But not any more, because -
    https://seclists.org/bugtraq/2008/Jan/270

    I also only found out about this recently(ish) - https://www.dns.cam.ac.uk/news/2017-09-01-localhost.html

    Tony.
    --
    f.anthony.n.finch <dot@dotat.at> http://dotat.at/
    Tyne, Dogger: Northwest 5 or 6, backing southwest 6 to gale 8, then becoming cyclonic 5 to 7 later. Slight or moderate, becoming rough for a time. Rain or thundery showers. Good, occasionally poor.
    --- Synchronet 3.18a-Linux NewsLink 1.113
  • From Ed Daniel@esdaniel@esdaniel.com to bind-users on Mon Jun 8 15:20:03 2020
    From Newsgroup: comp.protocols.dns.bind

    I'm not so sure, the written English is poor and can be misinterpreted.
    The sec focus link is crafted peculiarly but it's not a hustle in and of itself, it's sharing the problem description after all.

    I think given the misconfiguration *has* gone unnoticed and potentially
    could be of trouble 'in the future' a thank you, acknowledgement and
    small compensation would actually be the decent thing to do.

    Just my 2c as an active participant in the security community.



    On 05/06/2020 10:24, Jukka Pakkanen wrote:
    Complete scam, ignore.

    Just check the “securityfocus” link, it’s fake too.

    Jukka

     

    *Lähettäjä:* bind-users <bind-users-bounces@lists.isc.org> *Puolesta
    *Ejaz Ahmed
    *Lähetetty:* 5. kesäkuuta 2020 10:55
    *Vastaanottaja:* bind-users@lists.isc.org
    *Aihe:* Fwd: DNS Misconfiguration on- http://cyberia.net.sa/

     

     

     

    Some one is is claiming that our name server 212.118.64.2 is vulnerable
    with below information is this true

     

    Any suggestions would be appreciated 

     

    Thanks a n advance 

     

    Ejaz 

     

     

     

    Dear CYBERIA GROUP Security Team ,

     

    I Rahul a Ethical Hacker and Security Researcher. I found a
    vulnerability on your website that is DNS Misconfiguration .

     

    Your *localhost.cyberia.net.sa <http://localhost.cyberia.net.sa>   *has address 127.0.0.1 and this may lead to "Same- Site" Scripting. I can
    also ping the localhost network.

     

     

    Here is detailed description of this minor security issue :*http://www.securityfocus.com/archive/1/486606/30/0/threaded <https://hackerone.com/redirect?signature=f22656dd5afea782410979cdd3fbb951f819c82e&url=http%3A%2F%2Fwww.securityfocus.com%2Farchive%2F1%2F486606%2F30%2F0%2Fthreaded>*

     

    *Find attached POC  Video. *

     

    *Dear Team Waiting for your response and **I want bounty(money) with an Appreciation letter for my work and effort which I have given for *

     

     

    *Thanks in advance *

    *Ejaz *

     

     

     

     


    _______________________________________________
    Please visit https://lists.isc.org/mailman/listinfo/bind-users to unsubscribe from this list

    ISC funds the development of this software with paid support subscriptions. Contact us at https://www.isc.org/contact/ for more information.


    bind-users mailing list
    bind-users@lists.isc.org
    https://lists.isc.org/mailman/listinfo/bind-users


    --- Synchronet 3.18a-Linux NewsLink 1.113