Mobile app version of vmapp.org
Login or Join
Steve110

: Unknown subdomains pointing to my domain name About 6 months ago I purchased the domain name example.net. Today I was trying to go to my control panel at example.net/cpanel but accidentally went

@Steve110

Posted in: #Dns #Domains #Security #Subdomain

About 6 months ago I purchased the domain name example.net. Today I was trying to go to my control panel at example.net/cpanel but accidentally went to cpanel.example.net. I found a completely different website at this sub domain. It seems to be some sort of gaming website that sells hardware as well. This sub domain does not show up in my cPanel and when I try to create the subdomain cpanel.example.com I get an error.

Update: I used a DNS zone editor to delete some A records that had been made to that subdomain. There were others including mail.example.net, webmail.example.net and whs.example.net all containing the same site. I have the issue of their existence solved, but I need to know if this is a breach in security. All of the subdomains seemed to have been named to purposely avoid suspicious. Does this sound like a breach in security?

10.01% popularity Vote Up Vote Down


Login to follow query

More posts by @Steve110

1 Comments

Sorted by latest first Latest Oldest Best

 

@Jamie184

It is common for webhosts to direct both example.com/cpanel and cpanel.example.com to your cPanel (on port 80 - not secure - better to use cPanel via HTTPS on port 2083). However, it seems they might not have set up the redirection for the subdomain and instead it's simply defaulting to the IP address of your shared server. In which case it is likely returning the first defined virtualhost, which seems to be this "gaming website". The webhost should really make sure that the first "host" returns some default server page or something equally meaningless.

Access your site by its IP address and you'll probably get the same "gaming website".

The other subdomains you mention are again fairly standard, as closetnoc mentions, although webmail. should really direct to your webmail service - but I presume it does not?! In your case everything is probably all on the same server, so mail. is probably just an alias for your servers IP address. mail. is often used with email clients for your incoming/outgoing mailserver, but you can probably just use your domain name (however, this is again the insecure way).

10% popularity Vote Up Vote Down


Back to top | Use Dark Theme