Guest ~BD~ Posted October 29, 2008 Posted October 29, 2008 This URL http://www.stolenknowledge.com/en/us/default.aspx takes me to a page which looks incredibly like the 'Real McCoy' - http://www.microsoft.com/en/us/default.aspx Even the Tab (IE7) has the title 'Microsoft Corporation. Is there anyone here from Microsoft who can advise if there is some formal affiliation with 'Stolenknowledge.com'. If there isn't one, isn't this plagiarism? http://www.plagiarism.org/learning_center/...plagiarism.html Does it matter? <shrug> Dave Quote
Guest John McGaw Posted October 29, 2008 Posted October 29, 2008 ~BD~ wrote:<span style="color:blue"> > This URL http://www.stolenknowledge.com/en/us/default.aspx > > takes me to a page which looks incredibly like the 'Real McCoy' - > http://www.microsoft.com/en/us/default.aspx > > Even the Tab (IE7) has the title 'Microsoft Corporation. > > Is there anyone here from Microsoft who can advise if there is some formal > affiliation with 'Stolenknowledge.com'. If there isn't one, isn't this > plagiarism? > http://www.plagiarism.org/learning_center/...plagiarism.html > > Does it matter? <shrug> > > Dave > > </span> Probably doesn't matter a bit... Domain Information =================== Domain.......: STOLENKNOWLEDGE.COM (DOM-215776) Status.......: OK Amended......: 2008-03-28 13:18:49 Created......: 2008-03-28 14:18:50 Expires......: 2009-03-28 14:18:50 Registrar....: REGISTRAR-1 Organisation Contact ======================= ID...........: ORG-285006 Name.........: William Tisäter PostAddress..: Loviselundsvägen PostCode.....: 16559 PostArea.....: Hässelby Country......: SE Phone........: +46.763377182 Fax..........: Email........: william@mossnook.se Administrative Contact ======================= ID...........: UC-285007 Name.........: William Tisäter PostAddress..: Loviselundsvägen PostCode.....: 16559 PostArea.....: Hässelby Country......: SE Phone........: +46.763377182 Fax..........: Email........: william@mossnook.se Technical Contact ======================= ID...........: UC-135071 Name.........: Loopia Webbhotell AB, Loopia Registry PostAddress..: Kopparlundvägen 7B PostCode.....: 72130 PostArea.....: Västerås Country......: SE Phone........: +46.21128222 Fax..........: +46.21128233 Email........: registry@loopia.se Quote
Guest ~BD~ Posted October 30, 2008 Posted October 30, 2008 Thank you for providing the Domain information, John. I still find it puzzling that typing www.stolenknowledge.com into my address bar takes me to what appears to be the genuine Microsoft home page - all the links on it 'work' and go to Microsoft sites. I'd welcome any other thoughts. Dave -- "John McGaw" <nowhere@at.all> wrote in message news:empEYycOJHA.1012@TK2MSFTNGP04.phx.gbl...<span style="color:blue"> > ~BD~ wrote:<span style="color:green"> >> This URL http://www.stolenknowledge.com/en/us/default.aspx >> >> takes me to a page which looks incredibly like the 'Real McCoy' - >> http://www.microsoft.com/en/us/default.aspx >> >> Even the Tab (IE7) has the title 'Microsoft Corporation. >> >> Is there anyone here from Microsoft who can advise if there is some >> formal affiliation with 'Stolenknowledge.com'. If there isn't one, isn't >> this plagiarism? >> http://www.plagiarism.org/learning_center/...plagiarism.html >> >> Does it matter? <shrug> >> >> Dave</span> > > Probably doesn't matter a bit... > > Domain Information > =================== > Domain.......: STOLENKNOWLEDGE.COM (DOM-215776) > Status.......: OK > Amended......: 2008-03-28 13:18:49 > Created......: 2008-03-28 14:18:50 > Expires......: 2009-03-28 14:18:50 > Registrar....: REGISTRAR-1 > > Organisation Contact > ======================= > ID...........: ORG-285006 > Name.........: William Tisäter > PostAddress..: Loviselundsvägen > PostCode.....: 16559 > PostArea.....: Hässelby > Country......: SE > Phone........: +46.763377182 > Fax..........: > Email........: william@mossnook.se > > Administrative Contact > ======================= > ID...........: UC-285007 > Name.........: William Tisäter > PostAddress..: Loviselundsvägen > PostCode.....: 16559 > PostArea.....: Hässelby > Country......: SE > Phone........: +46.763377182 > Fax..........: > Email........: william@mossnook.se > > Technical Contact > ======================= > ID...........: UC-135071 > Name.........: Loopia Webbhotell AB, Loopia Registry > PostAddress..: Kopparlundvägen 7B > PostCode.....: 72130 > PostArea.....: Västerås > Country......: SE > Phone........: +46.21128222 > Fax..........: +46.21128233 > Email........: registry@loopia.se </span> Quote
Guest Alun Jones Posted October 30, 2008 Posted October 30, 2008 "~BD~" <~BD~@no.mail.afraid.com> wrote in message news:#zXiZrnOJHA.3980@TK2MSFTNGP06.phx.gbl...<span style="color:blue"> > Thank you for providing the Domain information, John. > > I still find it puzzling that typing www.stolenknowledge.com into my > address bar takes me to what appears to be the genuine Microsoft home > page - all the links on it 'work' and go to Microsoft sites. > > I'd welcome any other thoughts.</span> It's nothing to do with security. The owners of the domain name "www.stolenknowledge.com" have defined it to be an alias for "www.microsoft.com": C:\>nslookup -type=any www.stolenknowledge.com Server: resolver2.qwest.net Address: 205.171.2.65 Non-authoritative answer: www.stolenknowledge.com canonical name = www.microsoft.com C:\> This is not a security issue. It's yet another example of a beginner noting something surprising and being concerned that it's a security threat without actually understanding it. There are hundreds of examples of this kind of thing around the net, you've happened on one of the less profanity-laden. Alun. ~~~~ -- Texas Imperial Software | Web: http://www.wftpd.com/ 23921 57th Ave SE | Blog: http://msmvps.com/alunj/ Woodinville WA 98072-8661 | WFTPD, WFTPD Pro are Windows FTP servers. Fax/Voice +1(425)807-1787 | Try our NEW client software, WFTPD Explorer. Quote
Guest kbits.net Posted November 14, 2008 Posted November 14, 2008 It doesn't even have to be as complicated as "aliases". Malware plants malicious files on your computer that will redirect you to a secondary site. "Alun Jones" wrote: <span style="color:blue"> > "~BD~" <~BD~@no.mail.afraid.com> wrote in message > news:#zXiZrnOJHA.3980@TK2MSFTNGP06.phx.gbl...<span style="color:green"> > > Thank you for providing the Domain information, John. > > > > I still find it puzzling that typing www.stolenknowledge.com into my > > address bar takes me to what appears to be the genuine Microsoft home > > page - all the links on it 'work' and go to Microsoft sites. > > > > I'd welcome any other thoughts.</span> > > It's nothing to do with security. > > The owners of the domain name "www.stolenknowledge.com" have defined it to > be an alias for "www.microsoft.com": > > C:>nslookup -type=any www.stolenknowledge.com > Server: resolver2.qwest.net > Address: 205.171.2.65 > > Non-authoritative answer: > www.stolenknowledge.com canonical name = www.microsoft.com > > C:> > > This is not a security issue. It's yet another example of a beginner noting > something surprising and being concerned that it's a security threat without > actually understanding it. There are hundreds of examples of this kind of > thing around the net, you've happened on one of the less profanity-laden. > > Alun. > ~~~~ > -- > Texas Imperial Software | Web: http://www.wftpd.com/ > 23921 57th Ave SE | Blog: http://msmvps.com/alunj/ > Woodinville WA 98072-8661 | WFTPD, WFTPD Pro are Windows FTP servers. > Fax/Voice +1(425)807-1787 | Try our NEW client software, WFTPD Explorer. > > </span> Quote
Guest Alun Jones Posted November 14, 2008 Posted November 14, 2008 "kbits.net" <kbitsnet@discussions.microsoft.com> wrote in message news:ECF9D11C-7BEA-45F5-B86B-B81530DFF048@microsoft.com...<span style="color:blue"> > "Alun Jones" wrote: ><span style="color:green"> >> "~BD~" <~BD~@no.mail.afraid.com> wrote in message >> news:#zXiZrnOJHA.3980@TK2MSFTNGP06.phx.gbl...<span style="color:darkred"> >> > Thank you for providing the Domain information, John. >> > >> > I still find it puzzling that typing www.stolenknowledge.com into my >> > address bar takes me to what appears to be the genuine Microsoft home >> > page - all the links on it 'work' and go to Microsoft sites. >> > >> > I'd welcome any other thoughts.</span> >> >> It's nothing to do with security. >> >> The owners of the domain name "www.stolenknowledge.com" have defined it >> to >> be an alias for "www.microsoft.com": >> >> C:>nslookup -type=any www.stolenknowledge.com >> Server: resolver2.qwest.net >> Address: 205.171.2.65 >> >> Non-authoritative answer: >> www.stolenknowledge.com canonical name = www.microsoft.com >> >> C:> >> >> This is not a security issue. It's yet another example of a beginner >> noting >> something surprising and being concerned that it's a security threat >> without >> actually understanding it. There are hundreds of examples of this kind of >> thing around the net, you've happened on one of the less profanity-laden.</span> > > It doesn't even have to be as complicated as "aliases". Malware plants > malicious files on your computer that will redirect you to a secondary > site.</span> You're over-thinking this. As I've demonstrated, this - and several other examples - is caused conclusively by someone doing that which he has every right to do, create a name in his own domain and define it to be an alias for a host in someone else's domain. This is one reason why we use SSL when connecting to other people's sites - we can be assured that the site we connect to is the same as the domain name we originally entered. Securing computers against malware is hard enough, without you trying to convince people that they have malware when their symptoms can be explained by more mundane facts. This is NOT a security issue. Don't try to make it into one. Deal with malware-based redirects in their own right, not by trying to make ordinary redirects look like they are caused by malware. I'm sure you have every good intention, but please, don't try to make a security issue out of something that isn't. If you see security threats in everyday behaviour, that's paranoia. Distinguishing between the two is an important security skill. Alun. ~~~~ -- Texas Imperial Software | Web: http://www.wftpd.com/ 23921 57th Ave SE | Blog: http://msmvps.com/alunj/ Woodinville WA 98072-8661 | WFTPD, WFTPD Pro are Windows FTP servers. Fax/Voice +1(206)428-1991 | Try our NEW client software, WFTPD Explorer. Quote
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.