Threat Level: green Handler on Duty: Didier Stevens

SANS ISC: InfoSec Handlers Diary Blog - Comodo DNS hiccup on InfoSec Handlers Diary Blog

Sign Up for Free!   Forgot Password?
Log In or Sign Up for Free!

Comodo DNS hiccup on

Published: 2012-12-06
Last Updated: 2012-12-06 17:27:14 UTC
by Daniel Wesemann (Version: 1)
2 comment(s)

We received a report from a reader (thanks Marco!) that earlier today, "", a domain used by Comodo CA, apparently was pointing elsewhere for a while.  From information captured by passive DNS sensors, it indeed looks like the NS records were changed to "" and the A records were changed to point to, both indicative of a domain that has been "parked" by Network Solutions. Two hours later, the DNS records were updated again, and pointed back to Comodo.  Given that the registration record on Network Solutions' WHOIS shows a renewal date of December 5 for the domain, it is probably fair to assume that "something" went wrong in the renewal.



Keywords: comodo dns
2 comment(s)
Diary Archives