[H-GEN] security
Michael Anthon
anthonm at tams.com.au
Fri Sep 25 04:25:33 EDT 1998
The other thing you can do is grab the "responsible person" field from
the DNS SOA record for the domain
For example....
bash> dig tams.com.au soa
; <<>> DiG 2.2 <<>> tams.com.au soa
;; res options: init recurs defnam dnsrch
;; got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 6
;; flags: qr aa rd ra; Ques: 1, Ans: 1, Auth: 2, Addit: 1
;; QUESTIONS:
;; tams.com.au, type = SOA, class = IN
;; ANSWERS:
tams.com.au. 3600 SOA dns.tams.com.au. anthonm.tams.com.au. (
980917011 ; serial
3600 ; refresh (1 hour)
900 ; retry (15 mins)
604800 ; expire (7 days)
3600 ) ; minimum (1 hour)
The responsible person is anthonm.tams.com.au., which translates to
anthonm at tams.com.au
I don't think it's REQUIRED that this information be correct, but it
should be.
Regards
Michael Anthon
TAMS Systems
> -----Original Message-----
> From: Craig Eldershaw [mailto:ce at comlab.ox.ac.uk]
> Sent: Friday, 25 September 1998 5:46
> To: general at humbug.org.au
> Subject: Re: [H-GEN] security
>
>
> >By `local contact address' do you mean their ISP, or AUSCERT, or
> >somebody else?
>
> Depends upon who the ISP is. Something large and reliable (eg. a
> university) will almost certainly have a central person
> responsible for
> this (eg. here, I send such things to oxcert at ox.ac.uk which is a small
> team that coordinates closely with UK-wide CERT organisations).
> Presumably Rob or Mark could enlighten the list as to UQ's preferences
> and contact addresses for their clients.
>
> If you have a smaller ISP, then probably let them know (email to the
> support desk, or the chief admin or something), but they may
> or may not
> be organised/knowledgable enough to pass it on/do anything themselves.
> So direct to AusCERT might be appropriate in those instances.
>
> C.
>
>
More information about the General
mailing list