Re: Blocked site -

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Sat, 2012-10-20 at 04:08 -0400, Bob Goodwin - Zuni, Virginia, USA
wrote:
+AD4 Ok, this is what I see. What is it telling me?
+AD4 
+AD4     We detected the 2 DNS servers listed below.
+AD4 
+AD4     WARNING: If you are connected to an anonymity/privacy service and
+AD4     ANY of the servers listed below are from your ISP then your DNS is
+AD4     leaking. (You should be able to recognize them based on the hostname
+AD4     and location).
+AD4 
+AD4     IP:         184.63.128.68
+AD4     Hostname:   184.63.128.68
+AD4     ISP:        Wildblue Communications
+AD4     Country:    United States
+AD4 
+AD4     IP:         184.63.128.69
+AD4     Hostname:   184.63.128.69
+AD4     ISP:        Wildblue Communications
+AD4     Country:    United States
+AD4 
+AD4 DNS should be set for opendns 208.67.220.220 and 222. The dns address 
+AD4 they provided me six years ago is 12.189.32.61. I don't see either
+AD4 here, just a Wildblue address,different from the one my router thinks
+AD4 it is connected to +AFs-WAN IP: 184.20.151.17+AF0.

Going from what I read of their site, that means that they've figured
out the DNS servers you're getting answers from are the ones listed
above, not the ones that you're hoping to use.  Therefore, your ISP is
acting as a transparent proxy, intercepting all your DNS requests and
answering them, themselves, no matter what you do.

In my case, it comes back with my public IP address.  Which, kind of,
makes sense.  I run my own DNS servers, on my LAN, which is behind a
router doing NAT.

I'd like to know how they're doing their discovery.

I can understand why ISPs might do proxying, though I don't think it's a
brilliant idea (likewise with HTTP proxying).  There's customers that
badly configure their computers, so intercepting is a simplistic way to
work around that.  Some ISPs might try protecting their users from
malicious content on the internet, though they could do that with their
own servers without proxying, allowing you to make your own mind up to
use their censored servers or your own choice of servers.  And some ISPs
are obligated to censor children's access, again they could do that
other ways.




-- 
+AFs-tim+AEA-localhost +AH4AXQAk uname -rsvp
Linux 3.6.2-4.fc17.x86+AF8-64 +ACM-1 SMP Wed Oct 17 02:43:21 UTC 2012 x86+AF8-64

All mail to my mailbox is automatically deleted, there is no point
trying to privately email me, I will only read messages posted to the
public lists.




-- 
users mailing list
users@xxxxxxxxxxxxxxxxxxxxxxx
To unsubscribe or change subscription options:
https://admin.fedoraproject.org/mailman/listinfo/users
Guidelines: http://fedoraproject.org/wiki/Mailing_list_guidelines
Have a question? Ask away: http://ask.fedoraproject.org
[Index of Archives]     [Older Fedora Users]     [Fedora Announce]     [Fedora Package Announce]     [EPEL Announce]     [EPEL Devel]     [Fedora Magazine]     [Fedora Summer Coding]     [Fedora Laptop]     [Fedora Cloud]     [Fedora Advisory Board]     [Fedora Education]     [Fedora Security]     [Fedora Scitech]     [Fedora Robotics]     [Fedora Infrastructure]     [Fedora Websites]     [Anaconda Devel]     [Fedora Devel Java]     [Fedora Desktop]     [Fedora Fonts]     [Fedora Marketing]     [Fedora Management Tools]     [Fedora Mentors]     [Fedora Package Review]     [Fedora R Devel]     [Fedora PHP Devel]     [Kickstart]     [Fedora Music]     [Fedora Packaging]     [Fedora SELinux]     [Fedora Legal]     [Fedora Kernel]     [Fedora OCaml]     [Coolkey]     [Virtualization Tools]     [ET Management Tools]     [Yum Users]     [Yosemite News]     [Gnome Users]     [KDE Users]     [Fedora Art]     [Fedora Docs]     [Fedora Sparc]     [Libvirt Users]     [Fedora ARM]

  Powered by Linux