Here's a weird idea: stuffing Javascript into DNS to attack browsers. (via Hacker News)