Saturday, May 20, 2006

Hijacking the DNS

I'm sitting on the Datavalet wireless network in Vancouver International, and I've just noticed something really weird. It appears that the network is hijacking the DNS, if I type into the browser, it redirects me to, and I don't seem to get a choice about things.

If I was using a Windows box I'd immediately suspect some sort of trojan or other nasty, but I'm using a Apple Mac, so I'm provisionally ruling that out. Whatever the cause, I don't really regard that as "nice" behaviour, and I'm left wondering where this is happening in the chain of routers between me and the outside world. I'm hoping someone can shed some light on this one?

Update: The "problem" seems to have gone away now, if it starts happening again I'll grab the output of dig for and post it. I really should have thought of that in the first place, but it was just too spooky...