Please whitelist cPanel in your adblocker so that you’re able to see our version release promotions, thanks!

The Community Forums

Interact with an entire community of cPanel & WHM users!
  1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Stop domain hijacking

Discussion in 'Bind / DNS / Nameserver Issues' started by Haym, Aug 26, 2017.

Tags:
  1. Haym

    Haym Active Member

    Joined:
    May 12, 2017
    Messages:
    28
    Likes Received:
    5
    Trophy Points:
    3
    Location:
    UK
    cPanel Access Level:
    Root Administrator
    Hello,

    Consider the following scenario:

    Server A hosts the domain "mydomain.com"

    Server B hosts the domain "anotherdomain.org"

    Server A and B both push their DNS records to ns1.dnsdomain.com and ns2.dnsdomain.com

    How do we stop the user on Server B creating an alias or addon domain for "test.mydomain.com"? In such a case, the domain is created successfully and because mydomain.com is using the common nameservers, the test.mydomain.com hostname resolves to the hijackers account.

    This doesn't work if both users are on the same server because cPanel rightfully blocks the behaviour.

    Thanks
     
  2. cPanelMichael

    cPanelMichael Forums Analyst
    Staff Member

    Joined:
    Apr 11, 2011
    Messages:
    38,165
    Likes Received:
    1,371
    Trophy Points:
    363
    cPanel Access Level:
    Root Administrator
Loading...

Share This Page