back to article LinkedIn DNS hijacked, site offline

LinkedIn is working on its right-on-the-ball-with-security reputation, this time letting slip its domain details. According to this App.net post: “LinkedIn just got DNS hijacked, and for the last hour or so, all of your traffic has been sent to a network hosted by this company [confluence-networks.com]. And they don't require …

COMMENTS

This topic is closed for new posts.
  1. Trevor_Pott Gold badge
    Mushroom

    Everyone reset your passwords for LinkedIn. AGAIN. SON OF A...

  2. Anonymous Coward
    FAIL

    LinkedIn or SuckedIn?

    I added that site to my SpamAssassin's local.cf years ago when I started receiving people supposedly adding email aliases (i.e. not real people but rather mailing lists) such as mips@gentoo.org as associates and such.

    I'm surprised they're permitted to operate with the level of spam they generate.

    1. Matt Bryant Silver badge
      Happy

      Re: LinkedIn or SuckedIn?

      ".....I'm surprised they're permitted to operate with the level of spam they generate." A few associates and I got so tired of SpammedIn that we decided to create some fake people to join. It's become a bit of a fun challenge to spot each other's fake resumes on there. Needless to say, the fake people receive tons of spam and invites from clueless recruiters that can't spot a techie joke! Equally funny is when one of us emails a challenge to a resume on there saying "You must be a fake, no-one has a name as stupid as that", only to find out it's a real person!

  3. Anonymous Coward
    Anonymous Coward

    Interesting FaceBook effect on El Reg links

    When you post the article link on FB, it gives you the choice of 3 images - NONE of which appear anywhere on the page I see here. That's a shame, because one of them is rather amusing (shot of the old sick bay in starship Enterprise). How/why?

    1. TeeCee Gold badge
      Facepalm

      Re: Interesting FaceBook effect on El Reg links

      Simple explanation:

      El Reg's target audience: People who read the words.

      Faceberk's target audience: People who look at the pictures.

      1. JDX Gold badge

        Re: Interesting FaceBook effect on El Reg links

        Correction... El Reg's audience: People who aren't really interested in reading the words as much as spouting their own opinion and sense of self importance.

        1. Anonymous Coward
          Thumb Up

          Re: Interesting FaceBook effect on El Reg links

          @JDX Never a truer word was spoken.

      2. ecofeco Silver badge
        Thumb Up

        Re: Interesting FaceBook effect on El Reg links

        Simple explanation:

        El Reg's target audience: People who read the words.

        Faceberk's target audience: People who look at the pictures.

        Truer word were never spoken.

  4. Anonymous Coward
    Anonymous Coward

    Sounds like -

    They could do with employing an experienced professional, preferably with some DNS and security knowledge, trouble is I don't think they have contact details for anyone.

    They are fine for sales types though, recruitment, media analysts, blog authors, visionaries, trainers, etc.

    1. Anonymous Coward
      Anonymous Coward

      Re: Sounds like -

      Telephone sanitisers.

    2. RealFred

      Re: Sounds like -

      and other bs artists

  5. Anonymous Coward
    Anonymous Coward

    Who is at fault?

    When a DNS get's hijacked is that LinkedIn's failure or the DNS register / database? I have no clue on such things but eager to understand how it works and where the fault lays.

    1. Trevor_Pott Gold badge

      Re: Who is at fault?

      I use a 10 dollar/year DNS registrar. They e-mail me at 1 year, 90 days, 30 days, 5 days, 1 day and then they hold the domain for an additional 6 months before release.

      Seriously? How does LINKEDIN lose their domain?

      I can't say I've always made my renewal date, but my worst was 5 hours. I at least have the excuse that domain maintenance - or really, any given task - is not my primary job. I do 80K things a day and some things slip through the cracks. LinkedIn is large enough to have a full time body just to handle DNS naming, renewal and certs.

      Are you going to tell me that their enormous campus (filled with Googlebikes, because they are close enough for there to be stupid amounts of cross-polination and friends visiting friends) is still so terribly small that they can't find ONE GUY whose job it is to monitor this sort of stuff full time? I'd say pull a cook from that cafe of theirs, but actually it's a damned good cafe and that would be a crime...

      1. Adam_Smith
        Meh

        Re: Who is at fault?

        This isn't about forgetting to renew your domain, this is about DNS hijacking which has been a major flaw in the design of DNS since day 1.

      2. JDX Gold badge

        Re: Who is at fault?

        You think that as a company grows, they should hire someone full time to check if the DNS has expired?

      3. Anonymous Coward
        Anonymous Coward

        Re: Who is at fault?

        @Trev

        Employ someone to renew domains?

        Ever heard of a calendar/alarm event?

  6. Winkypop Silver badge
    Stop

    LinkedIn?

    I bat away LinkedIn requests like I swat at flies.

    Go away, I'm not interested in your signup spam service!

    1. Elmer Phud

      Re: LinkedIn?

      I've a Linkedin' filter - don't even get to seen them.

      1. Anonymous Coward
        Anonymous Coward

        Re: Illiterate

        There might be more point to your posts if they contained syntactically-correct English.

  7. Ian 55
    Thumb Up

    LinkedIn down?

    Oh dear, how sad, never mind.

  8. Anonymous Coward
    Anonymous Coward

    Have they not heard of the secure attribute?

    "they don't require SSL, so if you tried to visit, your browser sent your long-lived session cookies in plaintext."

  9. taxman
    FAIL

    See icon

    See title

  10. JeffyPooh
    Pint

    What time is it at LinkedIn ?

    12:00

    12:00

    12:00

    12:00

    12:00

    12:00

    ...

    [Post requires letters. These are letters...]

  11. Lunatik
    FAIL

    Dagnabbit!

    More security fubars from LinkedIn!

    I wish I didn't have an account now!

    Oh wait :)

  12. Battsman
    Angel

    LinkedIn=FailedOut

    I also "love" (see sarcasm for loathe) all of the endorsements my skills receive from people that have only talked to me on the phone, never seen a work product of mine, etc. Yes, I know my complete awesomeness is undeniable, but come one people you should at least consider the possibility that I might be a BS artist?

    In all seriousness, does anyone else find themselves reminded of elementary school by the endorsement thing - you know back when you'd give out candy hearts on Valentine's Day so other kids would like you. Cheap, shitty-tasting candy to buy affection. Hmmmmmmm

    1. JDX Gold badge

      Re: LinkedIn=FailedOut

      Don't worry, I'm sure they realise their mistake once they meet you.

      1. Battsman

        Re: LinkedIn=FailedOut

        I KNOW!!!! You'd think so, right??? Although the awesomeness of my BS apparently blinds them from reality - even when they walk into my office to find me asleep, drooling, with my pants around my ankles, and the final scene of internet porn on my monitor.

        It really is perplexing.

    2. Anonymous Coward
      FAIL

      Endorsement

      I think you have the wrong view of endorsement, it's actually to help remove the BS that you say you add to your profile. So for example, you have a claimed skill of computer security and no one endorses that but then adds the endoresement that you are a to$$er then it might make potential employers ask more questions at your interview if you get one.

  13. Anomalous Cowshed

    Linked In offline?

    That's terrible news! It's like the lights have gone out. Gone are all the contacts who never reply to your messages or who decided to "connect" with you so as to increase their number of "contacts" to 5,000. Gone are the amazing weird and fuzzy job offers. How will we will manage to do without them, and also without the tremendously useful 'updates' informing us about what our dear but unresponsive contacts have decided to "share" with us? You say this outage might last for minutes or even hours? It doesn't bear thinking of...

    1. Anonymous Coward
      Anonymous Coward

      Re: Linked In offline?

      " increase their number of "contacts" to 5,000"

      And yet, some of these folk haven't sussed that 5000 contacts and two recommends isn't quite as positive as 100 contacts with ten recommends.

  14. Reue

    Worked for me..

    My last job offer was from a recruiter finding me through Linkedin. In the end they offered me the job but I declined as my current company offered to beat it if I stayed.

  15. Anonymous Coward
    Anonymous Coward

    what is a DNS hijack?

    They got the MD5-PW from a rainbow table, someone used a social attack on their domain registrar?

  16. Anonymous Coward
    Anonymous Coward

    I shun social media, instead trusting people who have the balls to interact face to face and not some shadowy cyber bullshit.

    Though most have been sucked in by SM and have the nerve to label me a luddite, with zero knowledge of me due to my lack of SM presence and zero confidence in ther own ability to interact on a human level, these news stories only go to secure my position on SM.

    Trust face to face not cyber bullshit!

This topic is closed for new posts.

Other stories you might like