Airtel Broadband redirecting non-working domains to self hosted ad filled page!
July 26th, 2008 Leave a comment Visited 94 times, 5 so far today
Airtel Broadband redirecting non-working domains to self hosted ad filled page!
Airtel Broadband seems to have inspired by something that VeriSign was caught doing some time back.
If you are using Airtel’s DNS Servers, and you type in a domain name that is not working, they would send you to a page hosted on their servers with advertising!
VeriSign was sued for something similar and they had to remove this ‘special feature’.
Sadly, Airtel is likely to escape any punishment unlike someone takes them on for this unethical implementation of DNS redirection.
The DNS Servers which are affected by this new mechanism:
202.56.215.55
202.56.215.54
The site where you are redirected to:
http://airtel.onspeedsearch.com/nx/search/
We hope Airtel realize that this is not really a service they are providing to their customers. This is simply not acceptable. User should have the choice and thankfully they can switch to an alternative DNS Server…
|
TechWhack on Facebook
|


July 26th, 2008 at 01:42 pm
If there is an error they should always fail. I am not talking about stupid ads alone here.
Risk:
If you type http://jsdlfjsldfjsfjs.google.com and end up on another page, according to browser you are still in google domain and it has access to all your cookies. So anyone who modifies that page now can access all you accounts whether gmail, hotmail or icici.
July 26th, 2008 at 03:12 am
If there is an error they should always fail. I am not talking about stupid ads alone here.
Risk:
If you type http://jsdlfjsldfjsfjs.google.com and end up on another page, according to browser you are still in google domain and it has access to all your cookies. So anyone who modifies that page now can access all you accounts whether gmail, hotmail or icici.
August 15th, 2008 at 08:35 am
Hi !
To update you and to my surprise the DNS servers at Airtel are a Security Havoc for all of us, using them.They suffer with the 2008 DNS Bug of the Interent….The very basic flaw in the DNS servers that makes our Internet connection vulnerable.
Search and you will out …..however, Airtel now has disabled or stopped those
DNS redirects but but but…..See below [The Results of a Security Scan]:
==============================
Your name server, at 202.56.215.76, appears vulnerable to DNS Cache Poisoning.
All requests came from the following source port: 53541
Due to events outside our control, details of the vulnerability have been leaked. Please consider using a safe DNS server, such as OpenDNS. Note: Comcast users should not worry.
—————————————————————–
Requests seen for a43ac0522cfa.doxdns5.com:
202.56.215.76:53541 TXID=2425
202.56.215.76:53541 TXID=44468
202.56.215.76:53541 TXID=44557
202.56.215.76:53541 TXID=11332
202.56.215.76:53541 TXID=29607
============================
So, consider either telling Airtel to Patch up and correct it, otherwise there are sooner or later going to be lotta phishing scams.
Take Care…,
Kapil @ Delhi
August 15th, 2008 at 07:05 pm
Hi !
To update you and to my surprise the DNS servers at Airtel are a Security Havoc for all of us, using them.They suffer with the 2008 DNS Bug of the Interent….The very basic flaw in the DNS servers that makes our Internet connection vulnerable.
Search and you will out …..however, Airtel now has disabled or stopped those
DNS redirects but but but…..See below [The Results of a Security Scan]:
==============================
Your name server, at 202.56.215.76, appears vulnerable to DNS Cache Poisoning.
All requests came from the following source port: 53541
Due to events outside our control, details of the vulnerability have been leaked. Please consider using a safe DNS server, such as OpenDNS. Note: Comcast users should not worry.
—————————————————————–
Requests seen for a43ac0522cfa.doxdns5.com:
202.56.215.76:53541 TXID=2425
202.56.215.76:53541 TXID=44468
202.56.215.76:53541 TXID=44557
202.56.215.76:53541 TXID=11332
202.56.215.76:53541 TXID=29607
============================
So, consider either telling Airtel to Patch up and correct it, otherwise there are sooner or later going to be lotta phishing scams.
Take Care…,
Kapil @ Delhi