jmckformerly 'shaded' join:2010-10-02 Ottawa, ON |
jmck
Member
2014-Dec-12 9:59 pm
gov.on.ca name servers hijackedFrom nanog:
All resolver nameserver operators, if you could refresh your caches for gov.on.ca
There has been an incident where the government of ontario nameservers were briefly hijacked
We will post details to follow
in the meantime, if you can refresh your caches, the proper records should be:
ens2.gov.on.ca 204.41.4.240 ens1.gov.on.ca 204.41.8.240 |
|
roccaStart.ca Premium Member join:2008-11-16 London, ON |
rocca
Premium Member
2014-Dec-12 10:56 pm
FYI for our customers we've already refreshed and returning the appropriate IP's. |
|
|
Huh.....
I work in IT for the province, though as a web developer, so nothing to do with DNS.
Our help desk is going to be swamped Monday if everything hasn't replicated completely by then. It was affecting VPN too, understandably. |
|
|
|
segagenesis
Anon
2014-Dec-14 8:43 am
why wont your help desk be swamped today? why does it have to be swamped on monday? if u can fix it today? |
|
|
Because not many people work on Sunday.
You can "fix" DNS issues in minutes, which has already been done. But it takes hours or days for those fixes to hit the entire internet. |
|
|
to segagenesis
said by segagenesis :why wont your help desk be swamped today? Gov't workers working on the weekend? They won't even have a clue something was wrong! |
|
|
huh_wha
Anon
2014-Dec-14 3:56 pm
said by prairiesky:Gov't workers working on the weekend? They won't even have a clue something was wrong! The sad part is, the government is stupid enough to try and run their own external DNS servers. They should outsource that shit to something a little more bulletproof than a unionized government peon. Seriously, the Ontario government should stick to doing what it does best, trying to rip us off without getting caught. Leave the rest to the pros. |
|
|
It wasn't the government DNS servers that got hacked. It was the registrar, which allowed the hackers to point the domains to their own DNS servers. |
|
|
huh_wha
Anon
2014-Dec-14 5:07 pm
said by cybersaga:It wasn't the government DNS servers that got hacked. It was the registrar, which allowed the hackers to point the domains to their own DNS servers. EasyDNS. That's hilarious. » blog.easydns.org/2014/12 ··· domains/» lists.dns-oarc.net/piper ··· 663.html» www.liveleak.com/view?i= ··· 18501440Well, somebody got some a'splainin' to do. What a joke. |
|
|
to jmck
Thanks for the info. I've not blocked all traffic from .on.ca from all our border networks. |
|