Feeds

Comcast trials Domain Helper service DNS hijacker

Here to stay

Choosing a cloud hosting partner with confidence

The DNS hijacker is here to stay.

When Denver-based developer Brent Gartner returned home from vacation this week, he discovered that Comcast, his home ISP, was redirecting his mistyped urls to its very own ad-laden search pages. Earlier this month, the cable giant resurrected this age-old land-grab scheme in several US markets, including Colorado, with an eye on hijacking typos across the country.

Comcast does provide an opt-out. And Brent Gartner promptly did so. But the new scheme still boils his blood. "This pisses me off as it will surely break many web-serivces, spiders, and any client other than web browsers that use HTTP," he tells The Reg. "It looks like a blatant attempt to steal revenue from competing services."

As you might expect, Comcast doesn't call its DNS hijacker a DNS hijacker. It prefers "Domain Helper service."

"Despite the fact that web addresses are easier to remember than their IP address counterparts, sometimes you mistype an address," reads a company blog post. "Normally, you then sit and wait for the Web browser to time out, then you receive an error message that the site does not exist, and then you have to retype the correct address.

"With the Domain Helper service we are testing now, we will instead help direct your Web browser to an easy-to-use page with suggestions and links to get you back on track. We also provide a seamless search experience on this page, which is powered by Yahoo!, so you can find relevant search information, or simply perform another search."

And no doubt, when you click on Yahoo! ads, Comcast takes a cut.

The, um, service is currently under trial in Arizona, Colorado, New Mexico, Oregon, Texas, Utah, and Washington. But other markets can expect some hijacking in the near future. "The goal is to roll it out nationally when we’re done testing in these initial markets," a company spokesman tells us.

Countless other ISPs have introduced similar schemes, including Charter, Cox, Earthlink, and Verizon. And some, including California-based ISP DSL Extreme, were forced to reverse themselves in the face of user complaints.

Famously, VeriSign once tried to hijack typos as a top-level domain operator. And it backpedaled, as well.

Comcast has at least been open about the matter - while providing an opt-out. The company has also submitted a whitepaper on the operation to the Internet Engineering Task Force (IETF), available here.

The ISP does not prevent the use of the third-party DNS servers - though it was falsely accused of doing so earlier this year. ®

Security for virtualized datacentres

More from The Register

next story
TEEN RAMPAGE: Kids in iPhone 6 'Will it bend' YouTube 'prank'
iPhones bent in Norwich? As if the place wasn't weird enough
Consumers agree to give up first-born child for free Wi-Fi – survey
This Herod network's ace – but crap reception in bullrushes
Crouching tiger, FAST ASLEEP dragon: Smugglers can't shift iPhone 6s
China's grey market reports 'sluggish' sales of Apple mobe
Sea-Me-We 5 construction starts
New sub cable to go live 2016
New EU digi-commish struggles with concepts of net neutrality
Oettinger all about the infrastructure – but not big on substance
PEAK IPV4? Global IPv6 traffic is growing, DDoS dying, says Akamai
First time the cache network has seen drop in use of 32-bit-wide IP addresses
EE coughs to BROKEN data usage metrics BLUNDER that short-changes customers
Carrier apologises for 'inflated' measurements cockup
Comcast: Help, help, FCC. Netflix and pals are EXTORTIONISTS
The others guys are being mean so therefore ... monopoly all good, yeah?
prev story

Whitepapers

Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.
Security for virtualized datacentres
Legacy security solutions are inefficient due to the architectural differences between physical and virtual environments.
A strategic approach to identity relationship management
ForgeRock commissioned Forrester to evaluate companies’ IAM practices and requirements when it comes to customer-facing scenarios versus employee-facing ones.