httpd-cvs mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From cove...@apache.org
Subject svn commit: r1040789 - /httpd/httpd/branches/2.2.x/docs/manual/dns-caveats.xml
Date Tue, 30 Nov 2010 21:47:15 GMT
Author: covener
Date: Tue Nov 30 21:47:15 2010
New Revision: 1040789

URL: http://svn.apache.org/viewvc?rev=1040789&view=rev
Log:
PR50388: the hijacking domain has to be first if it's going to cause harm via
a collision in the resolved iface.

Modified:
    httpd/httpd/branches/2.2.x/docs/manual/dns-caveats.xml

Modified: httpd/httpd/branches/2.2.x/docs/manual/dns-caveats.xml
URL: http://svn.apache.org/viewvc/httpd/httpd/branches/2.2.x/docs/manual/dns-caveats.xml?rev=1040789&r1=1040788&r2=1040789&view=diff
==============================================================================
--- httpd/httpd/branches/2.2.x/docs/manual/dns-caveats.xml (original)
+++ httpd/httpd/branches/2.2.x/docs/manual/dns-caveats.xml Tue Nov 30 21:47:15 2010
@@ -122,18 +122,18 @@
     <p>Suppose that you've assigned 192.0.2.1 to
     <code>www.abc.dom</code> and 192.0.2.2 to
     <code>www.def.dom</code>. Furthermore, suppose that
-    <code>def.dom</code> has control of their own DNS. With this
-    config you have put <code>def.dom</code> into a position where
-    they can steal all traffic destined to <code>abc.dom</code>. To
-    do so, all they have to do is set <code>www.def.dom</code> to
-    192.0.2.1. Since they control their own DNS you can't stop them
-    from pointing the <code>www.def.dom</code> record wherever they
+    <code>abc.dom</code> has control of their own DNS. With this
+    config you have put <code>abc.dom</code> into a position where
+    they can steal all traffic destined to <code>def.dom</code>. To
+    do so, all they have to do is set <code>www.abc.dom</code> to
+    192.0.2.2. Since they control their own DNS you can't stop them
+    from pointing the <code>www.abc.dom</code> record wherever they
     wish.</p>
 
-    <p>Requests coming in to 192.0.2.1 (including all those where
+    <p>Requests coming in to 192.0.2.2 (including all those where
     users typed in URLs of the form
-    <code>http://www.abc.dom/whatever</code>) will all be served by
-    the <code>def.dom</code> virtual host. To better understand why
+    <code>http://www.def.dom/whatever</code>) will all be served by
+    the <code>abc.dom</code> virtual host. To better understand why
     this happens requires a more in-depth discussion of how Apache
     matches up incoming requests with the virtual host that will
     serve it. A rough document describing this <a



Mime
View raw message