研究人员通过过期的.mobi域域试验暴露了WHOIS协议的脆弱性,暴露了潜在的互联网安全风险。 Researchers expose vulnerability in WHOIS protocol through expired .mobi domain experiment, revealing potential internet security risks.
WatchTowr实验室的研究人员通过购买过期的.mobi域名,在WHOIS协议中发现了脆弱性。 Researchers from WatchTowr Labs identified a vulnerability in the WHOIS protocol by purchasing an expired .mobi domain. 他们设置了一个WHOIS服务器,显示包括证书当局在内的许多系统询问了它,有可能破坏互联网安全。 They set up a WHOIS server, revealing that numerous systems, including certificate authorities, queried it, potentially undermining internet security. 实验凸显了WHOSIS信任模式的缺陷,表明民族国家可以利用这一漏洞。 The experiment highlighted flaws in WHOIS’s trust model, suggesting that nation-states could exploit this loophole. 研究人员呼吁紧急更新WHOIS系统,以加强安全。 The researchers called for urgent modernization of the WHOIS system to enhance security.