thednt
02-10-2001, 12:35 PM
:bawling:
HI
I setup a website offering free sub-domains to people who work in the same industry as I do (Telco).
Anyhow, somebody who I don't know signed up and decided to send out 50k of UCE / Spam through my server using a ListMaker script.
The flame rate was low, but something strange happened.
The domain name was registered correctly at Bulkregister.com and the dns was showing internally. The dns settings on the RAQ3 where fine.
But when I did a whois on the domain name, neither the IP address nor the DNS showed. It was as if the domain had been "DNS zeroed". I rang bulkregister and my provider of the RAQ, and neither cliamed to know what was going on.
But when I deleted then recreated the domain locally and refreshed the dns at bulkregister.com, the domain started working again 12 hours later.
I don't think this is a glitch as this is the only domain that has ever been ripped by a Spammer, and the only one that has ever had this problem.
Telnet access to the domain, as per all my other domains was removed.
The root access password is 24 alpahnumeric characters long.
Anybody please advise as to what could have happened?
There are no signs of bandwidth consuption / DDoS attack.
No unusual log files.
Thanks
DAve
HI
I setup a website offering free sub-domains to people who work in the same industry as I do (Telco).
Anyhow, somebody who I don't know signed up and decided to send out 50k of UCE / Spam through my server using a ListMaker script.
The flame rate was low, but something strange happened.
The domain name was registered correctly at Bulkregister.com and the dns was showing internally. The dns settings on the RAQ3 where fine.
But when I did a whois on the domain name, neither the IP address nor the DNS showed. It was as if the domain had been "DNS zeroed". I rang bulkregister and my provider of the RAQ, and neither cliamed to know what was going on.
But when I deleted then recreated the domain locally and refreshed the dns at bulkregister.com, the domain started working again 12 hours later.
I don't think this is a glitch as this is the only domain that has ever been ripped by a Spammer, and the only one that has ever had this problem.
Telnet access to the domain, as per all my other domains was removed.
The root access password is 24 alpahnumeric characters long.
Anybody please advise as to what could have happened?
There are no signs of bandwidth consuption / DDoS attack.
No unusual log files.
Thanks
DAve