owner of this site who is it
- Thread starter vi3tb0i
- Start date
zman1
Active Member
Here is the WHOIS search response for "Saltwaterfish.com":
Registrant: Make this info private
RJR CONSOLIDATED
920 Valley Lane
Fort Pierce, FL 34946
US
Domain Name: SALTWATERFISH.COM
Administrative Contact , Technical Contact :
Manager, General **
fish@saltwaterfish.com
920 Valley Lane
Fort Pierce, FL 34946
US
Phone: 772-462-0203
Fax: 123 123 1234
Record expires on 10-Feb-2012
Record created on 10-Feb-1999
Database last updated on 29-Jun-2004
Domain servers in listed order: Manage DNS
NS1.DATAPIPE.NET 64.27.65.13
NS2.DATAPIPE.NET 64.27.64.76
Show underlying registry data for this record
Current Registrar: NETWORK SOLUTIONS, LLC.
IP Address: 64.106.136.11 (ARIN & RIPE IP search)
IP Location: US(UNITED STATES)-NEW JERSEY-HOBOKEN
Record Type: Domain Name
Server Type: Apache 1
Lock Status: REGISTRAR-LOCK
Web Site Status: Active
DMOZ 3 listings
Y! Directory: see listings
Secure: No
E-commerce: Yes
Traffic Ranking: 1
Data as of: 21-Jun-2004
Registrant: Make this info private
RJR CONSOLIDATED
920 Valley Lane
Fort Pierce, FL 34946
US
Domain Name: SALTWATERFISH.COM
Administrative Contact , Technical Contact :
Manager, General **
fish@saltwaterfish.com
920 Valley Lane
Fort Pierce, FL 34946
US
Phone: 772-462-0203
Fax: 123 123 1234
Record expires on 10-Feb-2012
Record created on 10-Feb-1999
Database last updated on 29-Jun-2004
Domain servers in listed order: Manage DNS
NS1.DATAPIPE.NET 64.27.65.13
NS2.DATAPIPE.NET 64.27.64.76
Show underlying registry data for this record
Current Registrar: NETWORK SOLUTIONS, LLC.
IP Address: 64.106.136.11 (ARIN & RIPE IP search)
IP Location: US(UNITED STATES)-NEW JERSEY-HOBOKEN
Record Type: Domain Name
Server Type: Apache 1
Lock Status: REGISTRAR-LOCK
Web Site Status: Active
DMOZ 3 listings
Y! Directory: see listings
Secure: No
E-commerce: Yes
Traffic Ranking: 1
Data as of: 21-Jun-2004
zman1
Active Member
Originally Posted by pwnag3!!
i like how it blatantly says this in the WHOIS
Secure: No
E-commerce: Yes
The Secure : NO is for the WEB site, not E-commerce.
The E-commerce is secure -- If you don't believe me go through the order process and when you get to the Credit Card entry page look in the low right corner of your Browser (IE) and you will now see a closed padlock.
i like how it blatantly says this in the WHOIS
Secure: No
E-commerce: Yes
The Secure : NO is for the WEB site, not E-commerce.
The E-commerce is secure -- If you don't believe me go through the order process and when you get to the Credit Card entry page look in the low right corner of your Browser (IE) and you will now see a closed padlock.
zman1
Active Member
Actually your Browser (IE) warns you when you go to a secure site/page or leave a secure site/page and if there are unsecured issues on a secure page.
Everyone has seen this as you have to respond with a Yes or No. There is one more option on this screen that says don't tell me about this in the future. Most people click that so the best way to tell in IE is look at the lower right corner. Blank= not secure, Lock Open -Secure page but non secure items, Lock Closed - Secure
Oh yeah HTTPS and HTTP You can guess what the "S" stands for I bet......
Everyone has seen this as you have to respond with a Yes or No. There is one more option on this screen that says don't tell me about this in the future. Most people click that so the best way to tell in IE is look at the lower right corner. Blank= not secure, Lock Open -Secure page but non secure items, Lock Closed - Secure
Oh yeah HTTPS and HTTP You can guess what the "S" stands for I bet......
zman1
Active Member
Originally Posted by pwnag3!!
yeah... i know
also if you ever port scan the website you will find that it has an active netbus port... probably a honeypot
There is also a antivirus package that uses port 12345 -- if this is what you're scanning for.
You remember the port 5000 issue and what two applications used it--- good and bad.
I do agree it is something they should look into!
I think something that people ought to bear in mind is that there are well known ports that Trojans use, but the use of port numbers weren't set aside to say Tojans can only use these ports and legitimate applications can use the rest, so I would keep this in mind. You should always err on the side of caution and investigate security holes/risks.
yeah... i know
also if you ever port scan the website you will find that it has an active netbus port... probably a honeypot
There is also a antivirus package that uses port 12345 -- if this is what you're scanning for.
You remember the port 5000 issue and what two applications used it--- good and bad.
I do agree it is something they should look into!
I think something that people ought to bear in mind is that there are well known ports that Trojans use, but the use of port numbers weren't set aside to say Tojans can only use these ports and legitimate applications can use the rest, so I would keep this in mind. You should always err on the side of caution and investigate security holes/risks.
zman1
Active Member
I would also hope their firewall blackholes any ports other than the ones they want to use. There could be at least one more reason for port 12345 IMO I don't want to mention it on this site, but I am sure you know what I am thinking. I believe it would be a bad choice to use this port IMO.