Here's some more info for ya to work with: ------forwarded message------------ Date: Thu, 27 Mar 2003 13:31:17 -0500 (EST) From: GNOC Provide - IP Address Engineering <[EMAIL PROTECTED]> To: Mike Rosing <[EMAIL PROTECTED]> Subject: Re: Error resolving global address.
Mike, This is Exodus legacy space. It now falls under the OrgId of EXCW (Exodus-Cable & Wireless). Please let me know if you have any additional questions. Thanks! ------------------------------end forward---------------- On Thu, 27 Mar 2003, Eric Murray wrote: > Getting a 503 or any HTTP error means that you are getting > through to something that is too busy. > An HTTP error jibes with the usual result of a web site hack > that "takes down" the server. But it also could be a result of > too many connection attempts. Except when we do get thru, it's to the "Future Home of a Dotster Registered Domain" So it's been hacked. > Not being able to resolve the name indicates something > different than too many users or a web site hack, since the name > information comes from DNS servers which are not on the same network. > Simplifying a lot, the ultimate DNS record comes from the registrar > who places it on the "root servers". > > If the root servers no longer have the record, then no one > will be able to resolve the name (modulo local cache timeouts, usually of > a day or so). > > ALJAZEERA.NET is registered by networksolutions.com (Verisign), who > also control most of the root servers as well. > Two days ago, ALJAZEERA.NET resolved to an IP address that > had a web server on it. Yesterday, it couldn't be resolved. > Today it points to 216.34.94.186. So what happened to take it off the DNS servers? That usually takes a few days. > 216.34.94.186 appears to belong to a Cable & Wireless IP block. > A traceroute ends at a CW router that is probably somewhere > in America: Yes, that's verified. Now, what was aljazeera.net's ip address 2 or 3 days ago? > They could have picked a bad time to move servers and be doing it > incompetently. Hackers could have spoofed Verisign into changing > their DNS record, and have broken into router control networks > to break their routing. Or the US government could be ordering > Verisign and CW to make ALJAZEERA.NET unavailable. Of the US government could be the hackers. Patience, persistence, truth, Dr. mike
