[Author Prev][Author Next][Thread Prev][Thread Next][Author Index][Thread Index]

Re: hijacking DNS server

To: or-talk@xxxxxxxxxxxxx
Subject: Re: hijacking DNS server
From: Sven Anderson <sven@xxxxxxxxxxx>
Date: Wed, 24 Sep 2008 00:57:09 +0200
Delivered-to: archiver@xxxxxxxx
Delivered-to: or-talk-outgoing@xxxxxxxx
Delivered-to: or-talk@xxxxxxxx
Delivery-date: Tue, 23 Sep 2008 18:57:17 -0400
In-reply-to: <48D967E9.9020901@xxxxxxxxxxxx>
References: <48d8aa14.0610c00a.38d0.53a6@xxxxxxxxxxxxx> <48D967E9.9020901@xxxxxxxxxxxx>
Reply-to: or-talk@xxxxxxxxxxxxx
Sender: owner-or-talk@xxxxxxxxxxxxx


Am 24.09.2008 um 00:04 schrieb Marco Bonetti:

This is the part I don't like: as I pointed out with the commandouputs,

they not only "hijack" your queries in order to "protect" your
navigation, but they also spoof google services.
If I'd been using OpenDNS, I'll think twice before sending my
credentials to (what my browser think is) google.com :)

I will quote myself from a mail regarding "OpenDNS configuration" onAugust 24:

You have to add a network for your IP and uncheck "Enable typocorrection" in "advanced settings". Then non-existing names areanswered with NXDOMAIN. I suggest to uncheck all other options aswell.



Regards,

Sven

References:
- Re: hijacking DNS server
  - From: Erilenz
- Re: hijacking DNS server
  - From: Marco Bonetti

Prev by Author: Re: OnionCat 0.1.9 now supports IPv4
Next by Author: Re: How I Learned to Stop Ph34ring NSA and Love the Base Rate Fallacy
Previous by thread: Re: hijacking DNS server
Next by thread: Does TOR use any non-ephemeral (non-DHE) ciphers?
Index(es):
- Author
- Thread