Comcast Intercepts and Redirects Port 53 Traffic

An anonymous reader writes "An interesting (and profane) writeup of one frustrated user's discovery that Comcast is actually intercepting DNS requests bound for non-Comcast DNS servers and redirecting them to their own servers. I had obviously heard of the DNS hijacking for nonexistent domains, but I had no idea they'd actually prevent people from directly contacting their own DNS servers." If true, this is a pretty serious escalation in the Net Neutrality wars. Someone using Comcast, please replicate the simple experiment spelled out in the article and confirm or deny the truth of it. Also, it would be useful if someone using Comcast ran the ICSI Netalyzr and posted the resulting permalink in the comments.

I'd first post but

[Anonymous Coward]

someone is intercepting my DNS requests.

Fuck `Em All

[Cpt_Kirks]

When Comcast took over from Time Warner here, I bailed.

I mean, Time Warner is evil. AT&T (who I switched to), is evil.

But Comcast is Motherfucking Sith Lord EVIL.

Scary fucking eeeeevil. Nazi evil. RIAA evil.

 

That's a negative

[jjb3rd]

I'm a comcast user and it works for me...perhaps his home network is the problem. A Linux user having a misconfigured network?!??! Oh wait this is Slashdot...nevermind.

Re:Not happening to me

[kenp2002]

screen shot or it didn't happen ;)

Re:Fuck `Em All

[Em Emalb]

So what are you trying to say?

C'mon man, stop beating around the bush and get to your point.

Re:Fuck `Em All

[DarrenBaker]

That's the quickest Godwin proof I've seen in a while.

Re:Fuck `Em All

[Itninja]

I think the parent was just using a bit of hyperbole there. Also, it appears he only has a limited understanding of what the word 'evil' means. And the word 'fuck'. And, well, he just don't appear to be that bright in general.

Re:Confirmed.

[Presto Vivace]

wow, it as if Comcast was trying to set a record of some sort for bad customer relations.

Re:Fuck `Em All

[Trivial_Zeros]

It's not evil... It's Comcastic!

Damn! That may stop my plan......

[whoever57]

Last time I had some spare time in an airport, I found that the T-Mobile hotspot allowed 53/UDP traffic out, so I was thinking of setting up openvpn on port 53 (instead of its usual 1194) in order to access my home machines (without a T-Mobile login). If Comcast intercepts this traffic, my evil plan won't work!

Re:Fuck `Em All

[bretticus]

Don't make fun of Poland.

Re:Fuck `Em All

[interkin3tic]

C'mon man, stop beating around the bush and get to your point.

It had something to do with star wars. The sith lord part tipped me off.

Re:Not happening to me

[Anonymous Coward]

Why are people suddenly so obsessed with pointing to the reply button?

Re:Not happening here

[Anonymous Coward]

Somebody screwed up posting this.

Posted by kdawson on 02:11 PM -- Tuesday June 09 2009

Why am I not surprised.

Re:Not happening to me

[EvilBudMan]

I would reply to that but I can't reply to something that doesn't exist (i.e. AC).

The answer to your question is here:

|||
  \\
    \|
      |
      |
      V

Re:I really am hoping this is NOT a gullibility te

[Ecuador]

Perhaps he wanted to mask his IP?
Pretty essential if he is running on HyperVM... ;)

Re:Not happening to me

[darthservo]

Or, more simply, query something you know doesn't exist (like asdfdsafdsafhdsds.com) against your server

Thanks alot. Now I'm going to get slashdotted.

Re:Not happening to me

[Zoxed]

> Or, more simply, query something you know doesn't exist (like asdfdsafdsafhdsds.com)

1) Quickly registered non-existing domain mentioned on Slashdot and put up an ad-serving site.
2) Wait for bored Slashdotters to try the link.
3) Profit.

Thanks Slashdot :-)

Re:Not happening here

[harryandthehenderson]

Yep. His quota is "as many as possible".

My /etc/hosts is REALLY long

[Anonymous Coward]

I don't trust DNS.

My /etc/hosts is REEEEEEEEEEEEEEAAAAAAAAAAAALLLLLLLLLLLLLLLLY long.

Every once in a while, a site doesn't work anymore.
When that happens, I call my parents to get the new IP address.

Re:Not surprised

[delta98]

Was gonna type something snarky here but it's best to let thing's go for now.

Re:Fuck `Em All

[Cpt_Kirks]

It's funny because Comcast has been the most reliable ISP I've ever had.

Well, Mussolini made the trains run on time.

(Next up, a Hirohito reference. Stay tuned!)

Re:Not happening to me

[__aasqbs9791]

Then that's even worse! It means Comcast must have hacked his server to falsify the logs! /s

Re:Not happening to me

[x4r]

dance or you dont alien. eat or you dont starving. make love or go war. fly airplanes or flying saucer. listen Elvis or BB King.

Re:"Official Response"

[bughunter]

Great, so now we can add "-1, Meatpuppet" to the list of needed moderation tags.

Re:Fuck `Em All

[docbrody]

mod ^ funny, very funny

Re:Not happening to me

[nschubach]

^
|
|
  \
    \
      \
        \
I clicked on that and all I got was a lousy web form.

Re:"Official Response"

[TheSlashaway]

ComcastBonnie can be reached at comcast.bonnie@verizon.com...