Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

What is “fast flux” hosting?

fast flux hosting
0
10 Posted

What is “fast flux” hosting?

0 CommentsAdd a Comment

1 Answer

0

Fast flux domain hosting involves the use of botnet zombie drones on broadband IPs infected to act as reverse proxies for the spammer’s website or nameservers. The spamvertised domain, or its nameserver, is pointed at a rapidly changing series of zombie IPs (hence the name) with very short “TTL” values — usually less than five minutes (300s). There are typically four or five “A” records to distribute the load and increase the odds of the website staying up. Their proxy service hides the IP location of the spammer’s dedicated servers. As the very action of hijacking computers is illegal in most jurisdictions, such fast flux hosting is only used for further criminal activities such as phishing and child pornography. Because the criminals know they could be identified if they used valid “whois” data, they always use bogus data, so registrars can confidently HOLD (suspend) the domain based on ICANN 3.7.7.2. 13 July 2007: The Honeypot Project has a very informative paper about fast flux ne

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.