現在は改善されている。-- ToshinoriMaeno 2023-04-23 06:42:57

1. moppy.jp

lame delegation の記録: サブドメインNSを登録していた。

tssさんが/JPCERT/CC へ報告。 2020-01

サブドメイン(wwwなど)の問合には返答する。

2. 2021-03-15

一年を過ぎて、何度かの通知でやっと修正された。アクセス制限解除。

Domain Information:
[Domain Name]                   MOPPY.JP

[Registrant]                    ceres Inc.

[Name Server]                   ns-1626.awsdns-11.co.uk
[Name Server]                   ns-246.awsdns-30.com
[Name Server]                   ns-1244.awsdns-27.org
[Name Server]                   ns-691.awsdns-22.net
[Signing Key]                   

[Created on]                    2012/12/07
[Expires on]                    2021/12/31
[Status]                        Active
[Last Updated]                  2021/03/15 16:50:19 (JST)

pc.moppy.jp.    300     IN      NS      ns-1057.awsdns-04.org.
pc.moppy.jp.    300     IN      NS      ns-1733.awsdns-24.co.uk.
pc.moppy.jp.    300     IN      NS      ns-393.awsdns-49.com.
pc.moppy.jp.    300     IN      NS      ns-838.awsdns-40.net.

3. history

現在も危ない設定は直されていない。 -- ToshinoriMaeno 2020-09-22 23:29:49

[Last Updated] 2021/01/01 01:05:10 (JST)

4. www ドメインなし

https://www.moppy.jp なし(危ない) /0211

5. partnar.moppy.jp A

ログイン画面

https://moppy.jp https://pc.moppy.jp (安全ではない接続!)

6. JPCERT/CC へ

/JPCERT/CC 報告してもらうのがよさそう。-- ToshinoriMaeno 2019-09-14 23:52:11

通貨もどきだから、狙われる可能性が大だ。表ではtweetできない。

現在も治っていない。REFUSED NS が存在する。 -- ToshinoriMaeno 2020-08-20 00:28:32

7. 登録

JP登録NSはひとつだけが返事をする。-- ToshinoriMaeno 2019-09-14 23:32:21

つまり、他のみっつは乗取り可能ということか。怖い。-- ToshinoriMaeno 2019-09-14 23:50:49

/pc.moppy.jp が重要らしい。-- ToshinoriMaeno 2019-11-01 14:59:41

この状態で、lame 上にゾーンが作れるかは知らない。

8. 設定の背景を考察

ドメインの権利者からみると、 親子ゾーン同居させようとして出来なかったのかも。-- ToshinoriMaeno 2019-09-15 02:31:07

問題はpc以外の子ドメインが同居可能なことだと気づく。-- ToshinoriMaeno 2019-11-02 01:33:09

9. whois

[Domain Name]  MOPPY.JP

[登録者名]      株式会社セレス
[Registrant]   ceres Inc.

[Name Server]  ns-1626.awsdns-11.co.uk  *** master ***
[Name Server]  ns-1057.awsdns-04.org    REFUSED  pc.moppy.jp ゾーンあり。
[Name Server]  ns-1733.awsdns-24.co.uk  REFUSED pc.moppy.jp ゾーンあり。
[Name Server]  ns-393.awsdns-49.com     REFUSED pc.moppy.jp ゾーンあり。
[Signing Key]                   

[登録年月日]                    2012/12/07
[有効期限]                      2019/12/31
[状態]                          Active
[最終更新]                      2019/01/18 11:14:33 (JST)

Contact Information: [公開連絡窓口]
[名前]                          株式会社セレス
[Name]                          Ceres Inc.
[Email]                         system@ceres-inc.jp
[Web Page]                       
[郵便番号]                      158-0097
[住所]                          東京都世田谷区
                                用賀 4-10-1
                                世田谷ビジネススクエアタワー24階
[Postal Address]                Setagaya-ku
                                4-10-1 Yoga
                                SetagayaBusinessSquare Tower24F
[電話番号]                      03-5797-3311
[FAX番号]                       03-5797-3348

moppy.jp.               60      IN      A       122.212.71.236
moppy.jp.               60      IN      A       122.212.71.231
moppy.jp.               60      IN      A       122.212.71.232
moppy.jp.               60      IN      A       122.212.71.234
moppy.jp.               60      IN      A       122.212.71.233
moppy.jp.               60      IN      A       122.212.71.228

ssl.pc.moppy.jp.        300     IN      A       122.212.71.229

moppy.jp. 900 IN SOA ns-1626.awsdns-11.co.uk. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400

moppy.jp ns-1626.awsdns-11.co.uk

10. history

authority: moppy.jp 86400 NS ns-1626.awsdns-11.co.uk  OK
authority: moppy.jp 86400 NS ns-1733.awsdns-24.co.uk REFUSED
authority: moppy.jp 86400 NS ns-1057.awsdns-04.org  REFUSED
authority: moppy.jp 86400 NS ns-393.awsdns-49.com   REFUSED

%dig -t ns moppy.jp @8.8.8.8                               ~/dnsq/aws/lame

; <<>> DiG 9.12.1 <<>> -t ns moppy.jp @8.8.8.8
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 9987
;; flags: qr rd ra; QUERY: 1, ANSWER: 4, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 512
;; QUESTION SECTION:
;moppy.jp.                      IN      NS

;; ANSWER SECTION:
moppy.jp.               20868   IN      NS      ns-1244.awsdns-27.org.
moppy.jp.               20868   IN      NS      ns-1626.awsdns-11.co.uk.
moppy.jp.               20868   IN      NS      ns-246.awsdns-30.com.
moppy.jp.               20868   IN      NS      ns-691.awsdns-22.net.

;; Query time: 3 msec
;; SERVER: 8.8.8.8#53(8.8.8.8)
;; WHEN: Sun Sep 15 08:19:29 JST 2019
;; MSG SIZE  rcvd: 177

11. pc.moppy.jp

%dig pc.moppy.jp @ns-1057.awsdns-04.org.                   ~/dnsq/aws/lame

; <<>> DiG 9.12.1 <<>> pc.moppy.jp @ns-1057.awsdns-04.org.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 36142
;; flags: qr aa rd; QUERY: 1, ANSWER: 6, AUTHORITY: 4, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;pc.moppy.jp.                   IN      A

;; ANSWER SECTION:
pc.moppy.jp.            60      IN      A       122.212.71.233
pc.moppy.jp.            60      IN      A       122.212.71.231
pc.moppy.jp.            60      IN      A       122.212.71.228
pc.moppy.jp.            60      IN      A       122.212.71.232
pc.moppy.jp.            60      IN      A       122.212.71.234
pc.moppy.jp.            60      IN      A       122.212.71.236

;; AUTHORITY SECTION:
pc.moppy.jp.            172800  IN      NS      ns-1057.awsdns-04.org.
pc.moppy.jp.            172800  IN      NS      ns-1733.awsdns-24.co.uk.
pc.moppy.jp.            172800  IN      NS      ns-393.awsdns-49.com.
pc.moppy.jp.            172800  IN      NS      ns-838.awsdns-40.net.

;; Query time: 4 msec
;; SERVER: 205.251.196.33#53(205.251.196.33)
;; WHEN: Sun Sep 15 08:25:33 JST 2019
;; MSG SIZE  rcvd: 276

12. www

%dig -t a www.moppy.jp @ns-1626.awsdns-11.co.uk.           ~/dnsq/aws/lame

; <<>> DiG 9.12.1 <<>> -t a www.moppy.jp @ns-1626.awsdns-11.co.uk.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 15195
;; flags: qr aa rd; QUERY: 1, ANSWER: 1, AUTHORITY: 4, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;www.moppy.jp.                  IN      A

;; ANSWER SECTION:
www.moppy.jp.           300     IN      A       124.211.63.231

;; AUTHORITY SECTION:
moppy.jp.               172800  IN      NS      ns-1244.awsdns-27.org.
moppy.jp.               172800  IN      NS      ns-1626.awsdns-11.co.uk.
moppy.jp.               172800  IN      NS      ns-246.awsdns-30.com.
moppy.jp.               172800  IN      NS      ns-691.awsdns-22.net.

;; Query time: 8 msec
;; SERVER: 205.251.198.90#53(205.251.198.90)
;; WHEN: Sun Sep 15 08:42:02 JST 2019
;; MSG SIZE  rcvd: 197

$dig -t a www.moppy.jp @ns-1626.awsdns-11.co.uk
; <<>> DiG 9.11.3-1ubuntu1.11-Ubuntu <<>> -t a www.moppy.jp @ns-1626.awsdns-11.co.uk
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62515
;; flags: qr aa rd; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; WARNING: recursion requested but not available

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;www.moppy.jp.                  IN      A

;; AUTHORITY SECTION:
moppy.jp.               900     IN      SOA     ns-1626.awsdns-11.co.uk. awsdns-hostmaster.amazon.com. 1 7200 900 1209600 86400

;; Query time: 7 msec
;; SERVER: 205.251.198.90#53(205.251.198.90)
;; WHEN: Tue Feb 18 08:48:08 JST 2020
;; MSG SIZE  rcvd: 128

13. この返事をどう思いますか。

%dig www.moppy.jp @ns-393.awsdns-49.com.                   ~/dnsq/aws/lame

; <<>> DiG 9.12.1 <<>> www.moppy.jp @ns-393.awsdns-49.com.
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: REFUSED, id: 63477
;; flags: qr rd; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 0
;; WARNING: recursion requested but not available

;; QUESTION SECTION:
;www.moppy.jp.                  IN      A

;; Query time: 105 msec
;; SERVER: 205.251.193.137#53(205.251.193.137)
;; WHEN: Sun Sep 15 08:38:46 JST 2019
;; MSG SIZE  rcvd: 30


CategoryDns CategoryWatch CategoryTemplate

MoinQ: DNS/lame_delegation/awsdns/moppy.jp (last edited 2023-04-23 06:42:57 by ToshinoriMaeno)