Month: January 2012

Another reason to look at NTP

Here is something I came across recently that I have’t seen before:

NTP internal IP disclosure

This is from an Internet facing host. The interesting bit here is the disclosure of internal IP addresses in the “refid” field. Just another thing to watch out for during pentests and when configuring your NTP services.

As a side note, carnal0wnage has some great posts on getting information out of NTP services.

Leaving GoDaddy on the SOPA/PIPA Bandwagon

Although it’s a few days past the 18th, I finally transferred my domain names that used to be registered with GoDaddy to other registrars. I’ve usedĀ  GoDaddy’sĀ services for several years now and haven’t had any issues. That is until I learned about their support of SOPA/PIPA. The decision to leave was made immediately, however it took a few days to figure out where to take my business.

SOPA/PIPA Blackouts

I’ve been keeping an eye out for the websites that participated in the blackout and their level of participation. The level ranged from completely taking the website down to watermarking logos. The biggest disappointment for me personally was the level of participation which slashdot showed. From what I could see, all it was just a couple of sticky posts inviting discussion on the subject. They did freeze all new article content for the duration of the blackout, but left all the old news posts intact. It is better than, say, covering your logo with sopa-themed graphic, however I felt that it didn’t have the impact I hoped for and they should have done more. Wikipedia was one of the greatest examples of the level of participation I expected.

Here’s a list I grabbed from http://sopastrike.com/ around 19:45 on Saturday, January 21st. Oh and here’s a small list of sites I noticed that participated but are not on that list:

  • xkcd.com
  • amazon.com

Confirmed Participants: