Quote:
Originally Posted by crockett
actually I looked at my history found the url..
85.255.115.220/ind.htm?src=183&surl=pornstarjunky.asianrealm.com& sport=80&suri=%2F
|
Hello,
Thank you for pointing that out.
Our cpanel dns servers was suffering cache poison attacks.
If you want a little more information regarding the attack type please reffer to:
http://en.wikipedia.org/wiki/DNS_cache_poisoning
This issue has been contained and the dns array has just been rebuilt.
As I've seen that this is happening much lately, I'd like to point it out for some of you guys that might have any trouble with those kind of redirections.
Ask you technical support/admin team, to disable recursion from named.
Use always the latest version of bind and try to use the following rules at your named server config:
acl internal { 127.0.0.0/8; };
options {
allow-recursion { internal; };
fetch-glue no;
use-id-pool yes;
};
Of course this is just an example. You can read more about DNS hardening in this paper:
http://www.cert.org/archive/pdf/dns.pdf
I apologize by any trouble that it might have caused to any of you.
If you have any further questions pleae hit me up by email or aim.
[email protected] or aim: splitneo
Regards,
Karlin König
______________________________
SplitInfinity Networks, INC
2455 Otay Center Drive #118-21
San Diego, CA 92154 USA
858-560-2760 General Office
703-637-9284 Tech Support
866-682-9275 Toll Free Tech Support