John Hardin wrote:
On Tue, 2008-01-29 at 17:51 -0500, Matt Kettler wrote:
Perhaps Verizon is screwing up their DNS?
Ahh, yes they are:
http://www.freedom-to-tinker.com/?p=1227
Hrm.
As a troubleshooting hack for this increasingly-common "feature",
perhaps a URIBL/DNSBL rule could be defined that checks a domain that
will *never* be in the zones (apache.org maybe) and if it ever hit then
add -20 to the score (to override all the FP hits) and emit a warning to
inspect your DNS service for ISP hijacking?
The problem is they're not hijacking everything... Only "interesting"
domains.
I can do a dig for several other domains against verizon's poison DNS
and get a NXDOMAIN. In fact, I tried to find another domain that gets
redirected, and couldn't.
