Slashdot Mirror

← Back to Stories (view on slashdot.org)

RoadRunner Intercepting Domain Typos

Posted by ryuzaki0 on from the following-in-the-footsteps-of-netsol dept.

shaunco writes "Sometime around midnight on February 26th (at least for the SoCal users), TimeWarner's RoadRunner service started intercepting failed DNS requests, redirecting them to RoadRunner's own search and advertising platform. To see if this has been enabled in your area, try visiting {some random string}.com in your Web browser. This feature subverts user preferences set within browsers, which allow the user to select which search engine receives their typos and invalid domains. RoadRunner users can disable this function — or they can just use OpenDNS. Here is an example RoadRunner results page.

62 of 337 comments (clear)

  1. OpenDNS Guide by Anonymous Coward · · Score: 5, Insightful

    or they can just use OpenDNS But OpenDNS does the exact same thing!
    1. Re:OpenDNS Guide by jagilbertvt · · Score: 4, Informative

      This has actually been going on for a few weeks now for New York area customers. However, there is an opt-out option that comes up on the page that comes up. I'm not quite sure how it tracks those opt-outs (by ip address perhaps?), as I didn't delve into it too deeply.

    2. Re:OpenDNS Guide by mrbcs · · Score: 5, Insightful

      Yes, but the difference is that YOU get control of how these are handled, not your ISP.

      --
      I'm not anti-social, I'm anti-idiot.
    3. Re:OpenDNS Guide by robogun · · Score: 3, Informative

      I' pretty sure it opts out by IP addresses - none of my machines came up with that junk after I opted out on one of them.

      Even in Firefox, all domains are intercepted and the search page is delivered if you just type the name (good or not)without http:/// and hit enter. IE users won't notice this as IE already delivers MSN Search if you try that.

    4. Re:OpenDNS Guide by tomz16 · · Score: 4, Informative

      FAIL for failing to understand how DNS works... Your statement is only true if you are running a caching server. No reason why bind can't do its own lookup. You lose out on the cache benefits of a larger DNS server, but don't have to rely on anything other than the roots.

    5. Re:OpenDNS Guide by tjohns · · Score: 5, Informative

      I'm not quite sure how it tracks those opt-outs (by ip address perhaps?), as I didn't delve into it too deeply.

      They're tracking by the cable modem's MAC address. There's a page explaining this (and how it's insecure) here:

      http://rgov.org/road-runners-dns-wildcard

    6. Re:OpenDNS Guide by WhatAmIDoingHere · · Score: 2, Insightful

      You opt in to OpenDNS service. You have to opt OUT of the Time Warner service. They should have, at the very least, asked us if we wanted this before making it on by default.

      --
      Not a Twitter sockpuppet... but I wish I was.
    7. Re:OpenDNS Guide by MadAhab · · Score: 4, Interesting

      I just programmed my cable modem to use 4.2.2.1-3 for DNS. Problem solved. At work, under a RoadRunner business connection, we've long run our own DNS because the RoadRunner DNS servers have always been just shit.

      Suspiciously, however, I didn't turn off the "service". Someone at the other end did it. I refused to give them my phone number, so either they used caller ID to pull up my account without my consent, or they blacked out my cable modem MAC when I started portscanning the server and looking up a hundred variations of www.stopfuckingwithmydnsroadrunnersucksdogballs.com.

      All around evil. Cable companies are doing this to boil the Net Neutrality frog, have no doubt about it.

      --
      Expanding a vast wasteland since 1996.
    8. Re:OpenDNS Guide by nschubach · · Score: 4, Funny

      Really? MSN Search is considered a friendly error message?

      --
      Every time I start to have faith in humanity, I ruin it by driving to work between 7 and 8 am.
    9. Re:OpenDNS Guide by Phat_Tony · · Score: 3, Funny

      Well, it's not on Roadrunner in Cleveland yet.

      Yeah, yeah, I know. Cleveland's the last place to get everything new.

      --
      Can anyone tell me how to set my sig on Slashdot?
    10. Re:OpenDNS Guide by THESuperShawn · · Score: 3, Informative

      We have researched this here in Charlotte, NC. I don't think its opting-out by IP address- I think it's going by the cable modem MAC. The reason is, users we checked with are only able to opt out if they have a TW/road Runner cable modem (rented from TW/RR). Those who own their own modem and placed it on the TW/RR network can opt-out, but the re-directing still occurs. Seems to be specific with either a config file placed on the TW/RR modem or the MAC address of the modem itself.

      We are still doing tests (it just started here in Charlotte yesterday).

      Another change over the past few days is that newsgroup access has been halved (connections) from 8 to 4.

      --
      Repant. Thy end is sheer.
    11. Re:OpenDNS Guide by drtsystems · · Score: 2, Informative

      I noticed this happening on my connection in the cleveland area (strongsville) a few weeks ago. But I promptly disabled it when i realized it was screwing with my intranet domain resolution. (i.e. ping basementserver would come back with roadrunners IP. extremely agrivating)

    12. Re:OpenDNS Guide by Kalriath · · Score: 2, Informative

      Wrong. You change "Search from the address bar" to "Do not search from the address bar"

      --
      For a site about things like basic rights, Slashdot users sure do like to censor "dissent".
  2. And? by Anonymous Coward · · Score: 3, Informative

    Verizon DSL does this too. I don't see how this is a story.

    1. Re:And? by nwf · · Score: 3, Insightful

      Yea, I noticed this as well and also didn't think something so trivial was news worthy. Now I'd like it if they also re-directed typo-squatters domains as well. That would be a public service, especially anything in the .cm TLD.

      --
      I don't know, but it works for me.
    2. Re:And? by gEvil+(beta) · · Score: 2, Informative

      You're right. I didn't say anything at all. But I did change the DNS addresses on my machines so they ended in .42 instead of .12 like the help page said to do. Now I get "proper page couldn't be found" messages instead of a yahoo/verizon lookup failed page.

      --
      This guy's the limit!
    3. Re:And? by moderatorrater · · Score: 4, Funny

      Let's not forget the .cum TLD; that kind of typo can kill productivity for hours.

    4. Re:And? by daichiasuka · · Score: 3, Informative

      Verizon does this for FiOS service as well, and this certainly isn't anything new. Verizon also offers the option to opt-out of this "service" by changing your DNS servers.

    5. Re:And? by thousandinone · · Score: 3, Funny

      Or 30 seconds for some of us...

  3. Good thing I'm with Comcast not TW by esocid · · Score: 4, Funny

    They just throttle my connection until it fails.

    --
    Absolute power corrupts absolutely. indymedia
  4. What's next? by gtrubetskoy · · Score: 4, Funny

    http://ww23.rr.com/index.php?origURL=http://www.google.com

    1. Re:What's next? by MightyYar · · Score: 4, Funny

      Coooool... you can make them say anything!

      --
      W..w..W - Willy Waterloo washes Warren Wiggins who is washing Waldo Woo.
    2. Re:What's next? by perdue · · Score: 2, Informative

      http://ww23.rr.com/index.php?origURL=http://www.google.com

      Lest anyone think this demonstrates that Road Runner is intentionally blocking Google, the trick here is that you can arbitrarily edit the string after ?origURL= to produce a page describing any website couldn't be found.

  5. Squatting www.jkshdfkljh23sadf.com by daveywest · · Score: 5, Funny

    Seems like I should be registering this and pointing it to my porn/phishing site right now.

  6. My ISP does this too by Galaga88 · · Score: 4, Insightful

    My local ISP (Insight in Evansville, Indiana) does the same thing. Even worse, when you 'opt-out' of their URL redirection, they instead redirect you to a fake IE error page. Slimy.

    1. Re:My ISP does this too by ivanmarsh · · Score: 3, Interesting

      My Charter service does the same thing. Leave it to a bunch of marketing nimrods to disable a troubleshooting tool so you can't tell the difference between a page not found, site not found or DNS error.

      So... I simply blacklisted Charter's redirection site in my firewall and proxy server.

  7. This would be fine... by Oxy+the+moron · · Score: 2, Insightful

    ... if it were opt-in and not opt-out. I would like to think that the majority of Internet users who don't use Slashdot have no idea about what actually happens when you type in www.dlibert.com, for example.

    Send an e-mail to your subscribers and let them enable the feature if they so desire, but don't force it on your userbase.

    --

    Proudly supporting the Libertarian Party.

  8. Interception, first down! by themushroom · · Score: 3, Interesting

    Roadrunner's not-found page seems roughly as useful as the default MSN Search page that IE puts up automatically if a page can't be found. Which is to say, not very.

    But it's still nowhere near as worthwhile as the "what you want, when you want it" domain squatter pages where most of the links are porn and ads. Catch up, Roadrunner!!

    --
    Laughter is the Spackle of the Soul.
  9. ATT does it as well by B00yah · · Score: 2, Interesting

    They've been doing it for about a year. i always thought it was fairly shady, but they rationalized it by saying other ISPs were doing it as well.

    --

    How Jaded Are You?
  10. Would you know the difference? by Otter · · Score: 3, Funny
    To see if this has been enabled in your area, try visiting www.jkshdfkljh23sadf.com (or something else random) in your web browser.

    Are there failed DNS requests any more? I'd thought every combination of characters had its own ad farm by now. If the last few unused ones now also direct to some random ads, I doubt I'd even notice.

    Who clicks on those things, anyway? You land on ebaaaaaay.com when your 'a' key sticks and think "Yes, I do want a beautiful Russian bride!"?

    --
    What I'm listening to now on Pandora...
  11. QUICK by p3on · · Score: 2, Funny

    SOMEONE REGISTER jkshdfkljh23sadf.com AND MAKE IT REDIRECT TO GOATSE

  12. Verizon FIOS does the same in No VA by schwit1 · · Score: 3, Informative

    http://arstechnica.com/news.ars/post/20070621-sitefinder-redux-verizon-tests-dns-redirect-service.html

  13. Re:Even happening with Lynx by orclevegam · · Score: 5, Funny

    Just tried it in West Hollywood area using lynx as the browser. Even then it is getting diverted to their page. Pretty sneaky. ... you don't really understand how this whole DNS lookup thing works do you?
    --
    Curiosity was framed, Ignorance killed the cat.
  14. Don't care, I have my own DNS server by Ars+Dilbert · · Score: 2, Interesting

    My DNS server queries root servers directly, so any poisoning by an ISP would not affect my home network.

    The Site Finder stunt NetSol/Verisign pulled a few years ago, that was done on the root servers, wasn't it? That was a lot more disruptive than an ISP creating a catch-all DNS zone on their little DNS boxes.

  15. Re:Even happening with Lynx by TheCRAIGGERS · · Score: 2, Informative

    Why would you think Lynx would be immune to this? Lynx requests 'www.slfjiuhsf.com' and gets data back.

  16. Yet another one by MobyDisk · · Score: 3, Informative

    I use Cavalier Telephone DSL and they've been doing this for years. I called them about it and they suggested that I use alternate DNS servers. Nobody has complained, nobody even cares. IMHO, this is another network neutrality-type issue. Followed the protocols, provide access - don't reroute/intercept/redirect me. (FYI to anyone else using them - they monitor your BitTorrent downloads too.)

  17. HAHAHA by GodCandy · · Score: 5, Informative

    How ironic... someone registered www.jkshdfkljh23sadf.com as a parked domain. Wow these ppl need help.

    1. Re:HAHAHA by GiovanniZero · · Score: 2, Insightful

      They already have a link from the homepage of slashdot, who wouldn't want that domain?

      --
      Mod me up, mod me down, do your worst you modding clown.
    2. Re:HAHAHA by punissuer · · Score: 2

      Wow these ppl need help. Actually, I'd say they need hindering. ;)
  18. Charter's doing it too by Einer2 · · Score: 2, Informative

    As far as I can tell, it started in Los Angeles sometime in the last few weeks.

    --
    Microsoft delenda est!
  19. Re:So? by Todd+Knarr · · Score: 5, Informative

    The problem here is that what TW is doing breaks DNS. By the RFCs, when I try to resolve a name that doesn't exist, I'm supposed to get an NX "record does not exist" result. What I get instead is an affirmative A record "name exists at this address" response. What happens at the browser level is irrelevant, TW's DNS system has already lied about the state of the DNS records associated with a given domain. This badly breaks a lot of things that aren't browsers that use HTTP and depend on correct NX responses to tell them when the server they're trying to talk to doesn't exist.

    As long as TW doesn't block direct use of non-TW DNS servers this can be worked around. If they start blocking that access, or redirecting all DNS traffic to their servers, then we've got a major problem on our hands.

  20. Re:Didn't a registrar do this? by Todd+Knarr · · Score: 4, Informative

    There was. What TW's doing is more pernicious, though. When NetSol was doing it, they were returning the A records directly from their first-level nameservers. BIND's no-delegation option can deal with that, because those first-level nameservers aren't supposed to be returning A records and BIND can translate those response into proper NX responses. With TW, since their DNS servers are supposed to be returning A records, there's no way to tell whether a particular affirmative response is valid or invalid. The only way to fix the problem is to cut TW's servers out of the loop entirely. All well and good, until of course TW either starts blocking all traffic to port 53 that's not to their DNS servers (like they do with outbound to port 25 now) or silently redirecting all DNS queries to their servers. Note that both of these are trivial, my own firewall has (commented-out) rules for both and neither takes more than about 3 lines.

  21. Actually, OpenDNS is even worse! by Anti-Trend · · Score: 4, Interesting

    OpenDNS is actually substantially worse. At least Roadrunner is obvious about the fact that you're visiting their servers. With OpenDNS, it seemed they were actually proxying requests for well-known search engines that were *not* typo'd in order to grab stats. Try setting your DNS resolvers to OpenDNS, then dig (or 'nslookup' for you Windows folks) www.google.com. Do a whois on the resulting IPs, and guess who they're registered to... Google? Nope, OpenDNS! At least, last I checked -- that was also the last time I used OpenDNS.

    --
    Working in a DevOps shop is like playing in a band made up entirely of keytarists.
    1. Re:Actually, OpenDNS is even worse! by The+Mighty+Buzzard · · Score: 3, Informative
      Note the difference in your two queries:

      dig @208.67.222.222 www.google.com vs.

      dig google.com @208.67.222.222 You're both correct.
      --
      Violence is like duct tape. If it doesn't solve the problem, you didn't use enough.
    2. Re:Actually, OpenDNS is even worse! by Albanach · · Score: 2, Insightful

      Ah, you went for www.google.com which they seem to intercept, I went for google.com which they ignore (or did until they read this I guess).

      Can't say routinely type in the www for any website - and get frustrated with the few sites that bork when you skip it. Nonetheless, the firefox search bar sends queries to www.google.com so this would hit quite a few folk if they use opendns.

    3. Re:Actually, OpenDNS is even worse! by MadUndergrad · · Score: 4, Informative

      OpenDNS has a blog post explaining why they're doing that: http://blog.opendns.com/2007/05/22/google-turns-the-page

    4. Re:Actually, OpenDNS is even worse! by Anti-Trend · · Score: 2, Insightful

      Still, the fact that they are hijacking the forward lookup without indicating that its hijacked is all wrong to me. If I can't trust OpenDNS to just resolve a site to the correct IP address, I don't really care about their justifications. It's simply no longer an option for me. I suspect a lot of others feel the same way.

      --
      Working in a DevOps shop is like playing in a band made up entirely of keytarists.
    5. Re:Actually, OpenDNS is even worse! by raju1kabir · · Score: 2, Interesting

      www.google.com. 30 IN CNAME google.navigation.opendns.com.

      Thanks for the heads up. I've just removed OpenDNS from my router's configuration. My ISP's DNS sucks but there are some caching servers at work I can piggyback on.

      I wonder if this OpenDNS business explains the error page I've been getting with increasing frequency from Google, something to the effect of my query looking like it came from malware on my computer.

      --
      "Patriotism is your conviction that this country is superior to all other countries because you were born in it." -- GBS
    6. Re:Actually, OpenDNS is even worse! by raju1kabir · · Score: 5, Informative

      The plot thickens. Have a look at this OpenDNS blog entry which explains the rationale for the Google interception. At least it's a plausible justification, though I don't have a Dell and I'd prefer my Googling to go straight to the source without intermediaries, so I'm keeping OpenDNS off.

      --
      "Patriotism is your conviction that this country is superior to all other countries because you were born in it." -- GBS
    7. Re:Actually, OpenDNS is even worse! by Anti-Trend · · Score: 2, Insightful

      Just curious, but would you feel better if they appended an element to the page to give you a little message saying you typed the URL wrong? Good question. The answer is that I would be more likely to recommend OpenDNS to less technical people who don't know how to setup a local DNS cache. For me, I want vanilla DNS that will give me the straight dope, none of this fuzzy DNS B.S. In other words, I won't use DNS servers that don't give accurate forward lookups, no matter their intentions.
      --
      Working in a DevOps shop is like playing in a band made up entirely of keytarists.
  22. And then there was no one left. by cadeon · · Score: 2, Funny

    First they came for the news group users,
    and I didn't speak up,
    because I didn't use news groups.

    Then they came for the torrenters,
    and I didn't speak up,
    because I didn't torrent.

    Then they came for the bandwidth hogs,
    and I didn't speak up,
    because I wasn't on Comcast.

    Then they came for my dns,
    and by that time there was no one
    left to speak up for me.

  23. Re:Even happening with Lynx by zerobeat · · Score: 2, Informative

    Just commenting that their filtering is browser independent. It is simply based on DNS lookup, yes - but did you know that before hand? I have tried lynx -useragent=Various_Options and convinced myself of that. Do you understand that many servers will respond differently dependent on User-Agent: ?

    --
    What other people think of me is none of my business
  24. Re:In the grand scheme of things by hal9000(jr) · · Score: 4, Insightful

    I care because if I typo an address, I can click in the URL bar and edit it. When I am redirected to a f*cking helpful search page, I can't do that anymore. I have to select, cut, edit, a whole GET string. It's a pain in the ass. Also, some people use other network enabled stuff than a browser.

    I have FiOS at home and luckily VZ has an opt out if you want to go configure your DNS manually in your router.

  25. Re:Even happening with Lynx by leamanc · · Score: 2, Insightful

    Do you understand that your first post made it seem like you thought using a CLI browser like lynx could somehow magically get past your ISP's redirection?

    --
    :q!
  26. Re:In the grand scheme of things by testostertwo · · Score: 2, Funny

    Well, imagine you were in your car, with your chauffeur.

    You ask tell them where you want to go and they say 'OK, sir'.

    After half an hour the chauffeur says 'here we are' and you say 'WTF, I asked to go to Spearmint Rhino, why are we at the mall?'

    Chauffeur: 'I don't know where Spearmint Rhino is, so I brought you here, you can ask someone or maybe just buy something'.

    Time passes whilst you wonder why exactly you're paying this idiot, then someone breaks your window with a mallet and shoves a ton of junk mail through on you.

  27. Re:And -- Advertising revenue by WidescreenFreak · · Score: 2, Insightful

    I noticed this the other day, and IIRC they also had Yahoo adverts in there with the Yahoo search links, seeing as how they're partnered with Yahoo. If that's what starts to become the norm, then I've got a problem with it. It's bad enough that people have to pay the fees that they do, but to then have the ISP shove advertisements -- or have an excellent outlet with which to shove advertisements -- to customers who are already paying (or in some cases, like Comcast, overpaying) for their Internet connectivity bothers me immensely.

    I know, I know, if I'd type the domain in properly I won't see the bad domain interception. Still, it's the principle, just like seeing advertising in full-priced games. Either don't give me advertising or lower my rates.

    Then again, it's possible that I didn't see any advertising at all and I'm delusional due to ... well, being in my natural state. :)

    --
    The Overrated mod is for reversing inappropriate, positive mods, not for voicing disagreement with a post.
  28. Here's why: by NeutronCowboy · · Score: 4, Insightful

    It means that ISPs intercept server requests and redirect the user to a different server. In this particular case, you're right - whether I get Firefox to display a 404 message or a page from RR, Verizon or any DSL that essentially says "This site doesn't exist, but try searching through here" doesn't matter to me. I'll just type the address in again.

    However, there is one instance where this issue matters right now: a lot of site monitoring still relies on pings or basic server lookups to figure out whether the server is up and running. This feature would immediately screw with that kind of monitoring. Basically, you cannot assume anymore that because a dns lookup or a ping returns a positive result that the server with that hostname is actually alive or in the DNS tables. Yes, there are ways around that, but it basically breaks one of the central tenets of the internet: the intelligence is on the edge of the network, and everything in between is just a packet forwarder.

    More significantly though is that it redirects a user to a place that wasn't requested. Basically, it means that from a technological perspective, this no different than RR or Verizon taking my request to www.google.com and redirecting it to their own search page. See why this can easily become a very, very big deal? I can guarantee you that this is a trial balloon by the ISPs to see how users react to this. If this goes through, expect that at some point in the future, you will have to jump through hoops to get to the site you want, and not the site your ISP thinks you ought to want.

    This is another problem that will most likely have to be enshrined in actual law: ISPs shall not take a request and redirect it elsewhere. The potential for and likelihood of abuse is just too large otherwise.

    Welcome to the intelligent network. It'll be a nightmare.

    --
    Those who can, do. Those who can't, sue.
  29. You said it yourself... by raehl · · Score: 2, Insightful

    The user base is dumb.

    One of the things most Internet Service Provider customers are paying for is... well, service. While I'm sure most of the Slashdot audience finds this service annoying, for MOST people on the internet, the resulting page is probably better for them than a blank error page.

    And, opt-in is a lousy way to institute change. If you make the change, and let people opt out, everyone who the change helps will get it and everyone who doesn't like the change will opt-out, at the cost of the inconvenience of opting out once for the people who don't like the change. If the change is opt-in, then you have to communicate the change, and only some people are going to make it, even if it would be a good change for them, at the cost of everyone who wants to make the change having to specifically opt-in. Which is better - trying to get ignorant users to opt-in to something they don't understand, or allowing power users to opt-out of something they do understand?

    The only exceptions to this is when the change is 'destructive', or you don't expect the change to be good for most people.

    But if you're changing the default behavior (new users would have the new behavior) and the change is not destructive, there's nothing malicious about opt-out.

    --
    paintball
  30. Re:So? by Todd+Knarr · · Score: 5, Insightful

    Say you've got a program on an embedded device that automatically downloads updates. It retrieves "http://updates.devicecompany.com/model/latest-firmware.txt" to check what the latest offered version of the firmware is, and if the latest is greater than what's installed it retrieves "http://updates.devicecompany.com/model/firmware-.dat" and installs it. If the company goes out of business or stops providing updates, updates.devicecompany.com won't resolve anymore or will return a 404 error, so the device doesn't need to do a whole lot of error checking. And error checking means more code, which means more memory needed to hold that code, and this device is designed to be as cheap as possible so it omits anything it doesn't need.

    Now, suppose the company goes out of business. No problem for the device, the host it's at is supposed to not resolve anymore so it won't try to contact it. But now TW intervenes. Instead of failing to resolve or getting a 404 error, the grab of the latest firmware version returns garbage (an HTML page, not a properly formatted indication of the latest firmware version). Bam, device crashes. Or worse, it misparses the results and tries to download new firmware. Again, garbage (HTML page) instead of a valid firmware image. But since there's no error checking, it tries to load that HTML page into memory as a firmware image. Bam, one insta-brick.

    Or suppose the device isn't even using HTTP. The DNS servers don't know what protocol the device intends to talk, it could be logging into an FTP server or querying data via SNMP for all TW knows. The application gets bogus DNS responses anyway, even though it's not using HTTP or the Web at all. Breakage is the least problem here. The application's sending things like passwords up to the server. Even if it uses SSL to protect against eavesdropping, the TW server is an endpoint and SSL won't stop the endpoint from seeing the data. Do you want to have applications handing your vendor-support-site passwords over to TW because of a typo in a hostname? I sure don't.

    This isn't a problem when it's a human running a browser looking at pages. But there's a large chunk of traffic that isn't humans, isn't a browser, and isn't using the Web at all. And TW's change breaks everything except that small, select chunk that's humans looking at a browser window. Bad thing, that.

  31. Re:So? by statemachine · · Score: 2, Insightful

    Can you give me a specific example of what this breaks?

    It breaks spam blocking.

    1) One thing that spammers will do is send e-mail with a fake domain in the envelope sender field. My server checks this, and if it resolves, then that's one less tool I can use.

    2) Another thing is checking a blocklist. IP address blocklists are queried using the IP address as part of a DNS lookup. Guess what happens when all of them resolve?

    It also typosquats my domains (and every other business's domains) in a very non-ethical way that confuses people.

  32. The Internet is not HTTP by pslam · · Score: 4, Insightful
    For those that don't get it yet: this breaks every other protocol that isn't HTTP.

    Sigh, and for those who still don't get it: HTTP is what your web browser uses to get web pages.

    All those who are spouting "it's useful" or "I don't understand what the fuss is" or "why can't they do it?"... you simply don't understand the issues and shouldn't be commenting.

  33. Re:Actually, OpenDNS is OPTIONAL by davidu · · Score: 2, Informative

    The features are tied -- when typo-correction is off so is the google redirection.

    If you're running a mail server or for any other reason want it turned off, just email contact at opendns dot com with your username and tell them you want it turned off.

    -david

    --

    # Hack the planet, it's important.