Very strange browser behaviour (firefox) -- probably security related
Hello
I just noticed a very strange behaviour in my browser (Firefox). It's probably not the correct forum to put this post in so Admin can feel free to put it somewhere else. I tried to call a site (actually an invalid domainname so it seems) in Firefox and get linked to my localhost. I actually have a local LAMP-Sever to work on my website etcetera. The site I tried to call was/is hmamail.com. I supposed it to be the domainname of a disposible Email-Inbox but it is not. I whether have this domain in Apache sites-enabled nor any clue how this can happen. It's probably a security related affair so I post it here even if I usually try to avoid that. If someone has an idea how that can happen I'd appreciate any help. I have no history enabled in my browser. I exclusively browse 'private'. Greets Gee |
Quote:
it seems you missed the most important bit in your explanation. |
simply spoken...
I call the website hmamail.com (which is invalid, no DNS-Entry) and get returned the localhost hosted website. Apologies if my English is ambiguous. |
Quote:
Code:
dig +short hmamail.com |
Solved
Quote:
Will mark as solved. Thanks for your elaboration. |
Quote:
but why? this is so weird. 'whois hmamail.com' gives very elaborate output about it being some godaddy site in arizona... |
Quote:
Quote:
It makes sense that if you run a proxy anonymizer and want to send email from that same service, that you as a network and system administrator, set hmamail.com to only resolve to a working email host from a known host. Not resolvable from the outside. I think it's easily done too, eg: Set A Records to 127.0.0.1 on the name servers, (theirs are in Amazon's Route 53) DNS service: Code:
dig A +short hmamail.com @ns-1016.awsdns-63.net Code:
host -t ns hmamail.com On their page/service, the site can resolve hmamail.com and likely authenticates to another email service to process for delivery as (example) inbound@hmamail.com Some DNS detective work can be used to make the same conclusion. Code:
dig MX +short hmamail.com Code:
host inbound.hmamail.com It is conceivable that inbound.hmamail.com will only receive mail from hidemyass.com and that via "Trusted Hosts". Good stuff on a Saturday. |
What this has to do with Firefox I have no idea.
DNS.fu |
thanks for the clarification!
still somewhat hazy, but that is entirely my own fault...:o |
Go TeamLQ!
|
Well, I admit I don't understand; I get
Code:
Buy this domain. |
Quote:
Code:
dig hmamail.com +short |
All times are GMT -5. The time now is 11:30 AM. |