Here's a scary thought. What if the following communication happened,
instituted by a "hacker".
Hacker calls MyCompany.com's ISP...
"Hi, this is Joe at MyCompany.com. We're VERY displeased with your service
and want to move our site immediately to NewISP.com. We don't want to
discuss it, our CEO has already decided. Just do it. The new InterNIC
contact handle is XYZ123 and the DNS are xxx.xxx.xxx.xxx and xxx.xxx.xxx.xxx
. Our web developers will have a new site tomorrow, so you won't see it
today, but we'll have if ready by the time the InterNIC changes this.
Please do this now."
If you have a reputable ISP, this isn't enough. But some ISPs would do this
even if they just got an angry e-mail. Having total InterNIC control of
your domain, could prevent this, although there are some situations where
having your ISP be the technical contact is good.
Just another "what if..." Not likely, but ...
--Doug
-----Original Message-----
From: Richard Fantini [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, April 04, 2000 11:24 AM
To: [EMAIL PROTECTED]
Subject: Re: Security holes revisited -- reward offered
Well, you could always call up this individuals ISP, tell them that he's
been trying to hack your site, emailing pornography to your employees and
such... heh.
Play dirty, that's my suggestion. You are at an amazing advantage knowing
who is going to be attacking you.
-Rich
> -----Original Message-----
> From: Nick Call [mailto:[EMAIL PROTECTED]]
> Sent: Tuesday, April 04, 2000 11:44 AM
> To: [EMAIL PROTECTED]
> Subject: Security holes revisited -- reward offered
>
>
> Ok, fellow Listees, here's the deal...
>
> My boss's daughter has a boyfriend.. (can you smell the trouble
> already???). He is bent out of shape over the fact that I did not
recommend
> that we hire him (I interviewed him and gave his skill sets an honest,
> thorough exam). He is good at A/V stuff, but his web experience/database
> experience is null. Anyway, back to the situation...... He has convinced
> the boss to pay him 2 grand to attempt to hack the system I built. He
> claims to be a super hacker, blah, blah, blah. I am not too confident
that
> he can do it, but there is a small chance....
>
> Multiple minds are better than one. I have gone over and over all the
stuff
> I know, but I am more than likely missing some stuff. Anyone care to
share
> their CF/NT/IIS security checklist or other advice?
>
> It's escalated into all-out war. He is going to stop at nothing to make
me
> look bad, and I will stop at nothing to prevent him from succeeding.
>
> Thanks in advance. I will custom print 5 free T-shirts with your logo (in
> one color) on them if you give me advice that plugs up a hole that I
didn't
> know about.
>
>
> Thanks in advance.
> Nick Call
> [EMAIL PROTECTED]
> http://www.graphixonline.com
>
>
> --------------------------------------------------------------------------
--
> --
> Archives: http://www.eGroups.com/list/cf-talk
> To Unsubscribe visit
> http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or
> send a message to [EMAIL PROTECTED] with 'unsubscribe' in
> the body.
>
> --------------------------------------------------------------------------
----
> Archives: http://www.eGroups.com/list/cf-talk
> To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or
send a message to [EMAIL PROTECTED] with 'unsubscribe' in
the body.
>
----------------------------------------------------------------------------
--
Archives: http://www.eGroups.com/list/cf-talk
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or
send a message to [EMAIL PROTECTED] with 'unsubscribe' in
the body.
------------------------------------------------------------------------------
Archives: http://www.eGroups.com/list/cf-talk
To Unsubscribe visit
http://www.houseoffusion.com/index.cfm?sidebar=lists&body=lists/cf_talk or send a
message to [EMAIL PROTECTED] with 'unsubscribe' in the body.
