[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

[cobalt-security] Re: What is this?

Subject: [cobalt-security] Re: What is this?
From: Bruce Timberlake <bruce@xxxxxxxxxx>
Date: Mon, 19 Apr 2004 08:57:28 -0700
Organization: BRTNet.org
List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

> I maintain a RaQ 4i with Solarspeed's security package. Can anyone tell me
> what this is:
>
> Active System Attack Alerts
> =-=-=-=-=-=-=-=-=-=-=-=-=-=
> Apr 19 03:32:00 ns1 named[1000]: Lame server on 'chatattack.net' (in
> 'chatattack.net'?): [204.157.0.94].53 'shadowmaster.chatstop.net': learnt
> (A=192.42.93.30,NS=192.42.93.30)
> Apr 19 03:32:04 ns1 named[1000]: Lame server on 'chatattack.net' (in
> 'chatattack.net'?): [204.157.0.192].53 'drkshadow.chatstop.net': learnt
> (A=192.42.93.30,NS=192.42.93.30)
> Apr 19 03:32:04 ns1 named[1000]: retry: query(chatattack.net) No possible
> A/AAAA RRs

The "lame server" message means that someone is querying your server for DNS 
info about chatattack.net, believing your server to be authoritative for 
chatattack.net when it's really not.
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (GNU/Linux)

iD8DBQFAg/bohI2So2rhOmcRAoQlAKCDur1XqOpOilS+89r4VcGma8fkEgCeLnC/
X3+KFvOQId4YXJ+N3ZRFdYQ=
=Sr5k
-----END PGP SIGNATURE-----

References:
- [cobalt-security] What is this?
  - From: Vic O'Dell

Prev by Date: [cobalt-security] What is this?
Next by Date: [cobalt-security] CobaltFacts
Previous by thread: [cobalt-security] What is this?
Next by thread: [cobalt-security] CobaltFacts

Sun Cobalt Security Message Index

Sun Cobalt Security Thread Index