Ars Technica

Rogue WHOIS server gives researcher superpowers no one should ever have

.mobi top-level-domain managers changed the location of its WHOIS server. No one got the memo.

https://arstechnica.com/security/2024/09/rogue-whois-server-gives-researcher-superpowers-no-one-should-ever-have/?utm_brand=arstechnica&utm_social-type=owned&utm_source=mastodon&utm_medium=social

Rogue WHOIS server gives researcher superpowers no one should ever have

.mobi top-level-domain managers changed the location of its WHOIS server. No one got the memo.

Ars Technica
Sep 11, 2024 at 10:03amArsBot 🤖
Show threadE.D.E.N.Sep 11, 2024
@arstechnica The fact that we're still relying on infrastructure like this is utterly insane. thank god the people who found tis hole were researches and not threat actors. utterly insane. this kind of oversight in critical internet infra just should not happen.
Show threadGreg HillsSep 11, 2024
@arstechnica I guess we've found that XKCD project being thanklessly maintained in Nebraska that supports the internet. Only it's in Nevada, and it's worse than we ever imagined.
Show threadAnthropySep 12, 2024
@arstechnica oh my god, imagine owning a TLD and letting your domain name expire, that's fucking impressive