RE: [Full-disclosure] Using domain whois information for fun and profit
- From: "php0t" <very@xxxxxxxxxxxxx>
- Date: Mon, 27 Feb 2006 22:02:09 +0100
A google search for HTML based Whois pages turned up:http://networking.ringofsaturn.com/Tools/whois.php
If you do a whois on carefreetravelmn.com<http://carefreetravelmn.com/> , you get a popup window.
Should internic allow <tags> to be used in domain registrationcontact info?
I don't see why not, it's just data. It comes without saying that if
you use data in a context where it might be more, you handle it
appropriately. If you echo data that is interpreted by a browser, you
should filter the tags - be it user input, the http referer field, the
reverse dns for the IP, etc.
Plus, when i do a whois at the shell, i wouldn't like to see </>
instead of the the html opening tags. The idea ain't bad though, it's
probably fun to see info about some percentage of the people that do
whois on our domains/ip's.
php0t
_______________________________________________
Full-Disclosure - We believe in it.
Charter: http://lists.grok.org.uk/full-disclosure-charter.html
Hosted and sponsored by Secunia - http://secunia.com/
- Prev by Date: [Full-disclosure] Using domain whois information for fun and profit
- Next by Date: [Full-disclosure] IN CASE YOU MISSED: Gay Security Industry Experts Exposed! 1st Issue! What has JP (John Vranesevich) been up to lately? FIND OUT HERE!
- Previous by thread: Re: [Full-disclosure] Using domain whois information for fun and profit
- Next by thread: Re: [Full-disclosure] Using domain whois information for fun and profit
- Index(es):
Relevant Pages
|
|
