Hello, As of Tue Nov 25 15:03:57 UTC 2014 in response to the findings of Mr. Bortzmeyer I have flushed cache on affected Neustar servers and checks are now responding correctly for all Neustar recursives.
Steve DeJong Neustar - UltraDNS On Tue, Nov 25, 2014 at 12:45 AM, Stephane Bortzmeyer <[email protected]> wrote: > On Sun, Nov 23, 2014 at 07:38:40PM -0800, > Brad Volz <[email protected]> wrote > a message of 60 lines which said: > > > The craigslist account at one of our registrars was compromised and > > the NS records migrated away from their rightful home. That issue > > has since been corrected, but the various caches around the Internet > > are still holding the old data. > > As of now (Tue Nov 25 08:42:44 UTC), we still see the wrong NS records > from several places: > > A Neustar open resolver: > > % dig @156.154.71.1 NS craigslist.org > ... > ;; ANSWER SECTION: > craigslist.org. 110317 IN NS ns01.000webhost.com. > craigslist.org. 110317 IN NS ns02.000webhost.com. > > A Symantec open resolver: > > % dig @198.153.192.1 NS craigslist.org > ... > craigslist.org. 110168 IN NS ns01.000webhost.com. > craigslist.org. 110168 IN NS ns02.000webhost.com. > > And several organisations like Florida International University. > _______________________________________________ > dns-operations mailing list > [email protected] > https://lists.dns-oarc.net/mailman/listinfo/dns-operations > dns-jobs mailing list > https://lists.dns-oarc.net/mailman/listinfo/dns-jobs > >
_______________________________________________ dns-operations mailing list [email protected] https://lists.dns-oarc.net/mailman/listinfo/dns-operations dns-jobs mailing list https://lists.dns-oarc.net/mailman/listinfo/dns-jobs
