/ Most Commented

ICANN to Auction New Generic Top Level Domains

Aug 09, 2008

ICANN has just published a paper from its contractor PowerAuctions LLC, regarding the use of auctions to award new Top Level Domains (TLD) strings in case of contention. I can understand what ICANN wants to avoid. In the past, it has been criticized for using the "beauty contest" model with the redelegation of the .net TLD... However, the auction model is based on the idea that whoever wins the auction will be able to recoup its investment on the sale... more

ACLU, Anti-Spam Laws, and the First Amendment

Aug 08, 2008

In an article published by the Technology Liberation Front, Cato Institute adjunct scholar Tim Lee dissects a recent argument by the American Civil Liberties Union (ACLU) regarding free speech & anti-spam laws. It's been interesting to watch the ACLU wrestle with anti-spam legislation. Their entire purpose is to work through the legal system to protect our civil rights, as defined in the First Amendment -- which is why I've been a card-carrying member since before I was old enough to vote... more

Is Anti-Virus Dead?

Jul 31, 2008

Each SANSFIRE, the Handlers who can make it to DC get together for a panel discussion on the state of information security. Besides discussion of the hot DNS issue, between most of us there is a large consensus into some of the biggest problems that we face. Two come to mind, the fact that "users will click anything" and that "anti-virus is no longer sufficient". These are actually both related in my mind... more

Study Finds 75% of Malicious Websites from Legitimate, Trusted Sources

Jul 29, 2008

New report released today finds 75 percent of malicious websites are from legitimate, trusted sources with "Good" reputation scores. According to the report, 60 percent of the top 100 most popular websites either hosted malicious content or contained a masked redirect to lure unsuspecting victims from legitimate sites to malicious sites. more

Advertising Pays for a Lot of Things… What Happens When the Ad Budget Dries Up in a Recession?

Jul 09, 2008

Doing some research on the effects of the Great Depression in the 1930s, I started wondering what happened to advertising during that period. Although I haven't turned up any detailed studies, I took a look at the various archives of advertising that allow Internet access to their exhibits, and noted the general move to less expensive, more localized advertising, and fewer adverts for more expensive goods. It made me wonder what will happen to online advertising if the current credit crunch starts to drive a worldwide recession... more

New Generic Top-Level Domains and Internet Standards

Jul 07, 2008

The recent decision by ICANN to start a new round of applications for new generic Top-Level Domains (gTLDs) is launching a round of questions on the IETF side about its consequences. One possible issue may be with vanity gTLDs like apple, ebay etc. Some expect that every Fortune 1,000,000 company will apply for its own TLD. My guess is rather the Fortune 1,000 for a start, but this does not change the nature of the issue, i.e. those companies may want to use email addresses like user@tld. more

Vint Cerf Comments on Government’s Role in Internet Broadband Access

Jul 05, 2008

Some offhand comments by Google's Vint Cerf at a recent event seem to have a triggered a panicky "Vint Cerf proposes nationalizing the Internet" buzz that's been ramping up fairly rapidly. Holy BitTorrent, Batman! Army paratroopers seen dropping into parking lots at AT&T and Comcast, while the Transportation Security Agency orders us all to remove our shoes before surfing the Web! Settle down, everyone. As usual with these kinds of stories, the truth is significantly different from the breathless buzzing. Here's how Vint described his thinking on this issue to me... more

Launch of .PARIS

Jun 26, 2008

Yesterday, hundreds of sweaty ICANN attendees put on their best clothes and braved the crush of the rush hour metro on a very hot day to crush together for the ICANN gala at the overwrought Hotel de Ville (city hall) in Paris. Most of them missed an interesting announcement. I arrived an hour late, but even so food and drink were not yet served (not even water), and everyone was in desperate need of provisioning. The dull roar of heat-induced complaining drowned out the dignitaries making speeches at the far end of the hall. more

Knowing Less

Jun 11, 2008

The announcement yesterday morning in the Times that New York State AG Andrew Cuomo had reached an agreement with three US network operators (Verizon, Sprint, and Time Warner) about blocking child pornography was both less and more important than it appeared. It's less important in that part of the agreement covers something ISPs already do... more

IPv6 and Airline Tickets… Tales of Two Transitions

Jun 03, 2008

The internet bus continues to accelerate straight into the IPv4 address depletion wall with spirited discussions continuing on how to divvy up the remnants of the address space. Obviously all five Regional Internet Registries (RIR's) want to make sure they get their fair share from IANA but what is a fair share remains the subject of interpretation. In the mean time, scenarios of a speculative land rush and auctions of ever smaller address blocks abound with unattractive consequences such as an explosion of the size of the routing table and a stunted growth of the global internet economy... In the meantime, the airline industry completed a rather significant migration of their own... more

CAN SPAM and Affiliate Mailer Opt-Out

May 19, 2008

Many online businesses use affiliates to drum up business. The affiliate finds a lead somewhere, passes it to the business, and gets a commission if the lead turns into a sale. Web based affiliates are relatively uncontroversial, but affiliates who advertise by e-mail are a chronic problem due to their propensity to send spam, both spam as normally defined and as defined by CAN SPAM. Is it possible to do legitimate e-mail affiliate marketing? Maybe... more

Sprint’s Big Deal: New Life for WiMax

May 07, 2008

The Wall Street Journal is reporting the terms of a yet unannounced deal which will finance a massive rollout of WiMax by a Sprint-Clearwire joint venture. Outside funding is to be provided by Intel, Google, Comcast, and Time Warner Cable as well as Bright House, a small cable company. Assuming the deal is for real, this is good news for US users of broadband and, indirectly, other users around the world. more

Jeremy Jaynes Gets One More Chance

May 04, 2008

n 2004 Jaynes became the country's first convicted spam felon under the Virginia anti-spam law. He's been appealing his conviction ever since, most recently losing an appeal to the Virginia Supreme Court by a 4-3 decision in February. As I discussed in more detail at the time the key questions were a) whether the Virginia law had First Amendment problems and b) whether Jaynes had standing to challenge it. The court answered No to b), thereby avoiding the need to answer a), the dissent answered Yes to both. more

Important New Jersey Supreme Court Decision in Internet Privacy

Apr 23, 2008

The New Jersey Supreme Court has issued an important decision on Internet users' right to privacy. The case involves a dispute about whether an ISP violated a user's privacy rights by turning over subscriber information (name, address, billing details) associated with a particular IP address. It ends up that the subpoena served on the ISP was invalid for a variety of reasons. As the user had a 'reasonable expectation of privacy' in her Internet activities and identifying information, and because the subpoena served on the ISP was invalid, the New Jersey court determined that the ISP should not have turned over the personal data... more

CNN.Com, Politically Motivated DDoS, and Asymmetric Warfare

Apr 23, 2008

Once again I find myself thinking about the nature of the asymmetric warfare threat posed by politically motivated DDoS (Estonia in 07, Korea in 02, and now China vs. CNN in 08). I keep thinking about it in terms of asymmetric warfare, a class of warfare where one side is a traditional, centrally managed military with superior uniformed numbers, weaponry, and skill. On the other we have smaller numbers, usually untrained fighters with meager weapons, and usually a smaller force. Historical examples include the North Vietnamese in the 20th century and even the American Revolution in the 18th century. Clearly this can be an effective strategy for a band of irregulars... more

Industry Updates

Uncovering DNS Details on Operation Celestial Force

Global DNS and Domain Activity Trends in Q2 2024

On the Hunt for Remnants of the Samourai Wallet Crypto Mixing Services in the DNS

A Peek at the V3B Phishing Kit Attack via the DNS Lens

NIS2 and Its Implications for Global Brands

  • By CSC
  • Jul 05, 2024

Tracking Down Fake Cryptocurrency Sellers Using DNS Intelligence

Following the DNS Trail of APT Group Newbie Unfading Sea Haze

On the DNS Trail of the Foxit PDF Bug Exploitation Attackers

Profiling a Popular DDoS Booter Service’s Ecosystem

IPv4.Global Commits to Keep Ukraine Connected

A DNS Investigation of the Phobos Ransomware 8Base Attack

Stately Taurus APT Group Targets Asian Countries: What Do the Campaign IoCs Reveal?

Managing Expanding Attack Surfaces for Growing Businesses

Subdomain Hijacking in the News Again - What is It?

  • By CSC
  • May 20, 2024

Looking for More Signs of Nitrogen in the DNS

View More