Register your own .mil Domain 334
JWSmythe writes " As reported in This Story at theregister.co.uk ,and on dailyrotten.com, it seems the US Department of Defense has dropped the ball. Not only can you register a .mil domain, but you can find "secret" domains that aren't publically known (the gov't uses security through obscurity?). I'm looking forward to hacker.mil, warez.mil, and porn.mil."
Link to .mil Registry (Score:5, Informative)
Re:hard to believe (Score:2, Informative)
Aaahh (Score:5, Informative)
Re:How long before Google is sued? (Score:2, Informative)
here it is... (Score:5, Informative)
Re:Aaahh (Score:5, Informative)
Won't work without a .mil email address, though.
Re:Aaahh (Score:5, Informative)
Re:Aaahh (Score:5, Informative)
-Mark
Here is the access list (Score:5, Informative)
Re:2600 contest? (Score:3, Informative)
Doesn't (didn't) 2600 have a contest like this? The first person to manage to get a .mil domain gets a free subscription, or something like that?
Their contest says that if you resgister 2600.mil (or any 2600.something) and point it to their website, you get a free lifetime subscription. (I think it's any TLD)
neurostarRe:Aaahh (Score:5, Informative)
I found references to http://www.nic.mil/cgi-bin/whois on google. I was debating on trying
Instead, I searched for
admin http://www.nic.mil
on Google, to verify the news. I ended up clicking on a web site that shows beginning web masters useful resources.
From there, I went to the site one level above, and from there clicked a link to view a document about standard run of the mill no big whoop procedures about webmastering (pretty useful if you want to be a contractor or write software and have it comply, I assume.)
BTW the security notice on this document is a link to army.mil's privacy policy, which says:
Information presented on Army Home Page is considered public information and may be distributed or copied unless otherwise specified. Use of appropriate byline/photo/image credits is requested.
Anyway, on this document I was just describing, click the second link to the defenselink webmasters area.
There (which is also public according to their stated policy) you can click on "Domain Registration in the
http://www.nic.mil/ftp/mgt/bul-9605.txt [nic.mil]
These are just public info resources. army.mil's security policy says if you try to upload or change stuff, that's what they care about.
Re:2600 contest? (Score:5, Informative)
Besides that, the military might have an incompetent admin that exposes something stupid like that, but I for one wouldn't want to try my luck at exploiting it. I think you'd face better odds for survival as a black man spitting on an LAPD officer in a remote area away from public view.
Address (Score:5, Informative)
It hasn't been possible to add new domains or run queries since Friday, so don't even bother.
Since Slashdot if a Pussy-land... (Score:5, Informative)
I did the process at the .mil NIC site [nic.mil].
After you fill all the forms, there's:
PAY ATTENTION!
This online program makes no changes to the WHOIS database.
The scope of this online program is to send the template to the e-mail address entered in the field below.
Once you receive the completed template, you must forward it to the appropriate point of contact for action.
The NIC will not process any templates until it receives this template (by email) from the domain administrator or service PMO.
So you are essentially filling a template, which you can do by hand as well, following the instructions here [nic.mil].
It lets you retrieve POC by a handle though. I don't know the access level of this information in USA, but this is quite odd, since it seems that the handles are assigned by initials, and are of progressively increasing length.
I also wonder where does this interface gets that data from... There's a DB somewhere, and it can be probably hacked via this interface.
Re:Aaahh (Score:3, Informative)
http://nic.mil/cgi-bin
http://nic.mil/cgi-bin/ip-num
http://nic
http://nic.mil/cgi-bin/asn
http
http://nic.mil/cgi-bin/ro
http://nic.mil/cgi-bin/host
other toys
http://frwebgate.access.gpo.gov/cgi-bin/use
http://boulder.noaa.gov/noc/nhcexit.txt
Re:Of course... (Score:3, Informative)
Don't get to excited:
Of course, not wanting to be labelled a combatent, that's as far as I went.
Re:Aaahh (Score:2, Informative)
Re:NIPR.MIL (Score:1, Informative)
Not to be confused with "SIPRNet", which is the secure side, which isn't even connected to the regular internet. It's called "air gap".
DISA reverses much of it's IP space to the NIPR.MIL domain. So basically you had a DoD visitor to your web site... since there are hundreds of thousands of DoD NIPRNet users, that's not to suprising.
That's the way it's been for decades (Score:5, Informative)
Once DNS came in (yes, there was an Internet before DNS), delegation started working. Early thinking was that you'd have one second-level domain for each large organization, which would then manage its own third-level namespace. MILNET still works that way. Since the military is very hierarchical, the organizational structure matches the DNS hierarchy.
Historically, there weren't many top-level .MIL updates. Most changes were further down in the hierarchy. If the NIC for MILNET is still using that template, it's probably still that way.
Re:Address (Score:1, Informative)
http://sites.defenselink.mil/ [google.com]
http://sites.defenselink.mil/servlet/DataEntry [google.com]
http://sites.defenselink.mil/servlet/DataEntry/ad
BTW, I found this independantly by searching for '"add user" site:.mil'.
Summary (Score:5, Informative)
Here's a summary of the proposed domains.
If you want to know who submitted it, read through the comments again.
Enjoy!
Al-Queda.mil
runofthe.mil
General.mil (cereal)
Cara.mil (caramel)
Rumor.mil (which would be slashdot.org.. hehe)
rastafarian.mil
peace.mil
Piece.mil ("as I find well toned and armed women hot")
starfleet.mil
diploma.mil
peace.in.our.t
gin.mil
pointlessdeath.mil
2600.mil
Na
runofthe.mil
slashdot.mil
ally
IN-SOVIET-RUSSIA-we-practice-better-i
in.soviet.russ
slashdot.mil
kevinmitni
2600.mil
fuckedcompany.mil
bushisanidiot
ashcroftisan ass.mil
sgc.mil
weoverthrewiran.mil
weoverthre
weassinatevietnamese.mil
wekillci
wesupportcoupinchile.mi
wesupp
wetrainedosama.mil
w
wegavesaddammoney.mil
wegave
weoverthrewpanama.mil
webombaspi
"noches.mil" (Thousand nigths)
"dos.mil" (Two thousand)
blackop.mil
pepper.mil
paper.mil
da
deathstar.mil (for dvader@deathstar.mil)
milf.mil
Wind.mil
honeyp
This is a great find.. . (Score:4, Informative)