hannoDec 10
German ministry renames itself, domain expires, is bought by SEO-spammer, expires again, is bought by domain grabber, then later bought by itsec company who now learns that apparently plenty of internal systems of the ministry still try to connect to the domain...
I don't even know where to start how terrible that is and what it tells us about government IT security practices...
https://mint-secure.de/bundesdomain-im-blindflug-dns-leaks-und-ein-jahrzehnt-it-nachlaessigkeit/
@TimPhSchaefers good work!
Bundesdomain im Blindflug: DNS-Leaks und ein Jahrzehnt IT-Nachlässigkeit

Der Artikel zeigt, wie die vergessene Bundesdomain bafl.de weiterhin von Behörden-Systemen genutzt wird und DNS-Logs ausgewertet wurden.

Mint Secure
Show threadDmian 🇪🇺
@hanno @TimPhSchaefers It’s very surprising to see that NIC .de doesn’t have a reserved second level domain for government sites (like the “.gov” or “.gob” you normally see, “.reg.de” maybe?). The German government buying private domains like a regular Joe is a really weak move. 😝
Dec 10 at 12:57pmIceCubesApp
Show threadTimDec 10
@dmian @hanno there is gov.de and bund.de - but room for improvement ...
Show threadDmian 🇪🇺Dec 10
@TimPhSchaefers @hanno Oh! Thanks for the info. When I checked it said there was no second level domains for Germany. If so, why not use that for ministers? Everything government here in Spain is under gob.es, a reserved second level.
Show threadTimDec 10
@dmian @hanno We just start that :)
Show threadDmian 🇪🇺Dec 10
@TimPhSchaefers @hanno Ok. I see. But it’s strange that a nameless person like me knows that you don’t immediately abandon a domain for a new one, you keep the old one with redirects until the reports say no one is calling those urls anymore, but a government was not doing that 😆
Show threadhallunke23 🇺🇦Dec 10

DeNIC used to have a policy that 2-letter domains and any domain that matches a license plate code is unavailable.

Problem with that: VW sued against that policy because they wanted to register vw.de and won, so DeNIC had to abandon the policy. Now all the domain names that match license plate codes (which were supposed to be used by the district administrations) are in the hands of random people.

@dmian @hanno @TimPhSchaefers

Show threadDmian 🇪🇺Dec 11
@hallunke23 @hanno @TimPhSchaefers Oh! Wow… That’s a really shocking bit of information. Thanks!