Many noip.com DDNS domains offline due to Microsoft seizure

[scotte]

If you use noip.com for dynamic DNS you may have noticed that your domains aren't resolving this week. The reason for this is because Microsoft was granted a federal court order to seize 22 of noip's DDNS domains in an effort (according to Microsoft) to disrupt a malware botnet. The seizure was done by allowing Microsoft to take over DNS lookups for the 22 noip owned domains.

Although Microsoft claims that they are filtering only malware domains, millions of people have discovered, like I have, that in fact all resolution of these noip domains is not working because Microsoft didn't actually implement things correctly.

Here's noip's statement: http://www.noip.com/blog/2014/06/30/ips-formal-statement-microsoft-takedown/

And a great technical view on how Microsoft implemented their DNS redirection incorrectly: http://www.unchartedbackwaters.co.uk/pyblosxom/microsoft_noip_dos

Finally, here's Microsoft's article on the subject, but note that they have been revising this article over the last couple of days and in fact have set the page up to auto-refresh to make sure you only get the latest version of it: http://blogs.technet.com/b/microsof...ime-epidemic-in-tenth-malware-disruption.aspx

(Note that aside from using free noip DDNS, I have no relationship with any of the companies or links - it was suggested in #asuswrt on Dalnet to post this info, and when I saw that in fact it hadn't been discussed at all here on SNB, it seemed like a worthy post.)

 

[sinshiva]

enough to turn me into a mac user. freakin clowns.

 

[L&LD]

enough to turn me into a mac user. freakin clowns.

How would using a mac saved you if you also used noip.com?

 

[scotte]

How would using a mac saved you if you also used noip.com?

I think his point was around not supporting Microsoft via use of their products, rather than specifically about noip.com.

For me, Apple is just another Microsoft - use Linux!

 

[stevech]

Apple, years back, was a good company.
Before they focused on reselling music.

 

[RMerlin]

no-ip is still down for me.

You can start to feel the frustration of their CEO in NO-IP's latest blog update. I feel for them. This is a pretty massive impact on their customers (many of which are paying). I hope for them they will be able to get any form of compensation from Microsoft, but I somehow doubt it.

Someone should send Microsoft a few copies of these:

 

[RMerlin]

No-IP seems to have regained control of all their domains now. Mine is once again resolving.

 

[sinshiva]

huzzah, same here. prolonged a bit by my having forgot to remove a manual IP from my OVPN, lul.

 

[scotte]

Likewise, service was restored for me as well sometime over the past few days (was out of internet reach on vacation for a few days - so unable to check until now).

Blog regarding restoration: http://www.noip.com/blog/2014/07/03/update-microsoft-takedown/

Previous blog entry RMerlin mentioned: http://www.noip.com/blog/2014/07/02/message-ceo-dan-durrer/

Giving Microsoft a few copies of the DNS and Bind book would be great - but then again they would continue to insist on using their broken version of named anyway, and that's assuming they can even read in the first place. Given Microsoft's record on following the RFCs (i.e. they don't) I'm fairly certain the reading level in Redmond is a few years behind the rest of the civilized world. I'd add a smiley, but it's not really a joke, and not really funny.

Glad no-ip has regained control of it's property.

 

[scotte]

Bam. Microsoft admits wrongdoing and has settled with no-ip/vitalwerks:

https://threatpost.com/microsoft-settles-with-no-ip-over-malware-takedown/107121

"“Microsoft has reviewed the evidence provided by Vitalwerks and enters into the settlement confident that Vitalwerks was not knowingly involved with the subdomains used to support malware."

According to no-ip, this affected 5 million hostnames.

More details from no-ip blog: http://www.noip.com/blog/2014/07/10/microsoft-takedown-details-updates/

This one has come to closure, but it's just a matter of time until the next one!

 

[stevech]

sounds like a good lawsuit brewing.