4 comments

[ 5.3 ms ] story [ 25.3 ms ] thread
Right now it's the same IP as news.ycombinator.com. Nothing preventing that from changing, of course, but it's currently not acting malicious.
Good point. I did a whois but not an nslookup. The problem is as you say, though. A man-in-the-middle attack is possible in the future.
HN could easily redirect to news.ycombinator.com when the HTTP Host header is set to something else.