Ξ welcome to cryptostorm's member forums ~ you don't have to be a cryptostorm member to post here Ξ
Ξ any OpenVPN configs found on the forum are likely outdated. For the latest, visit here or GitHub Ξ
Ξ If you're looking for tutorials/guides, check out the new https://cryptostorm.is/#section6 Ξ

domaingateway.com - DNS Hijack?

A core mission of cryptostorm is ensuring consistent, reliable network security with minimal fuss & drama. From DNS-based services like our DeepDNS in-browser native .onion/.i2p site access, through grounbreaking research on IP6 leakblocking, & to firewall-based structures to enable "fail-closed" security, this is where we discuss & develop cryptostorm-style leakblock tech.
User avatar

Topic Author
parityboy
Site Admin
Posts: 1254
Joined: Wed Feb 05, 2014 3:47 am

domaingateway.com - DNS Hijack?

Post by parityboy » Tue Mar 17, 2015 12:24 am

OK, so I wasn't sure where to put this - if someone can think of a better location, feel free to move it.

Background
I use an AceStream link site - livefootballol.com.

Problem
What I've noticed is that if I mistype the URI - i.e. footballlol.com (too many l's, and the "live" omitted) - I get this URI in the browser:

http://11165504-301870.domain.domaingat ... =null&id=1

What I'm expecting is the browser saying to me "Server not found." So what is going on? Is this browser hijacking (doubt it since I'm running Mint and I don't have any weird add-ons)? Is it a DNS hijack further up the recursion path?

User avatar

Tealc
ForumHelper
Posts: 238
Joined: Tue Jan 28, 2014 12:38 am

Re: domaingateway.com - DNS Hijack?

Post by Tealc » Thu Mar 19, 2015 10:38 pm

Aparently the domain name http://footballlol.com/ resolves to 72.172.89.185, and this is also the same IP for http://11165504-301870.domain.domaingateway.com/

So AFAIK it's just a misconfigured domain name :-D

User avatar

Topic Author
parityboy
Site Admin
Posts: 1254
Joined: Wed Feb 05, 2014 3:47 am

Re: domaingateway.com - DNS Hijack?

Post by parityboy » Fri Mar 20, 2015 3:11 am

@Tealc

Of course, if I'd been sharp enough to think of that, I would never have posted. I suppose all this security stuff has me paranoid. Cheers. :D

Post Reply