IP: I Ps registered to home addresses and a DNS hole

[Dave Farber <farber () cis upenn edu>]

> From: "Jason L. Rosensweig" <jlrosen () nist gov>
> To: <farber () cis upenn edu>



> Infoworld columnist Stuart McClure notes 6/16/00:
>
> http://www.infoworld.com/articles/op/xml/00/06/19/000619opswatch.xml
>
> "A growing number of home DSL customers are requesting static IP addresses
> to have a place to serve up their family pictures and post their résumés
> online. Typically, when an ISP registers a block of IP addresses with the
> American Registry of Internet Numbers (ARIN), it submits its own street
> address rather than the client's. But as one bright reader discovered, at
> least one major ISP, Pacific Bell Internet, gives the DSL customer's home
> address instead of the ISP's."
>
> and
>
> "To discover the information your DNS is leaking, just ask Network
> Solutions. For example, to check out how simple it is to view your DNS
> records, just point your Web browser to
> www.networksolutions.com and select WHOIS Lookups. Now input your domain
> name (e.g., mydomain.com) and hit Submit. You will see your normal Network
> Solutions registration information, including the primary and secondary
> (maybe more) DNS servers. Now click on the first DNS entry's IP address.
> With any luck this will show you the HST (host) record for your DNS server.
> Now for the undocumented trick. In the lookup field, insert "server
> NS0000-HST" replacing NS0000-HST with the DNS's HST name, and up will pop
> the first 50 domain names that your DNS server hosts."
>
>
>
> Jason Rosensweig
> National Insitute of Standards and Technology (NIST)
> Computer Security Division
> 301.975.5727 Vc
> 240.460.0739 Cl
> 801.948.0279 Fx
> jlrosen () nist gov