Justin Thomas 🛡 on Nostr: It's mildly disconcerting that Azure doesn't validate ownership of DNS zones that ...
It's mildly disconcerting that Azure doesn't validate ownership of DNS zones that they host. I moved my company's forward and reverse DNS services over to Azure on my company account. The migration of the reverse zones in particular prompted me to think about how that was being authenticated.
Of course the zones aren't really active until the name servers are added at the registrar. But...
#InfoSec #DNS #Authentication
1/
Published at
2023-10-16 22:27:06Event JSON
{
"id": "dcfb14a2b9d24ae4c5735a7149fd7740e48b9a4b04f7956f26cfa833a1d89d3f",
"pubkey": "240808d34f92fac49a98804745b0726b2ae6c4dfd3abd04f555771293ecb143b",
"created_at": 1697495226,
"kind": 1,
"tags": [
[
"t",
"infosec"
],
[
"t",
"dns"
],
[
"t",
"authentication"
],
[
"proxy",
"https://ser.endipito.us/users/justin/statuses/111247047178216103",
"activitypub"
]
],
"content": "It's mildly disconcerting that Azure doesn't validate ownership of DNS zones that they host. I moved my company's forward and reverse DNS services over to Azure on my company account. The migration of the reverse zones in particular prompted me to think about how that was being authenticated.\n\nOf course the zones aren't really active until the name servers are added at the registrar. But... \n\n#InfoSec #DNS #Authentication\n\n1/",
"sig": "2e6d6de018082b18c0a472e2ceb1cf36ed5bfb3bb2465ddf55c2ba3e9f677ea8d3f8127ac653ca0fa0d89d6788c416707181151c4e02f2a438d1be37c72e2177"
}
