New Jersey's Cablevision Hijacks DNS Error Pages

Selikoff writes "I just noticed Cablevision's Optimum Online service has begun hijacking DNS Error pages with, you guessed it, ad-supported results. Aside from hurting the underlying stability of the Internet, there have been instances where hackers have used such tools against customers. I know Road Runner customers have had to deal with this for a couple months now, although at least they have an outlet to turn it off." Update: 09/30 13:18 GMT by T : Note, as several readers have pointed out, this hijacking is of DNS errors rather than 404 errors as originally presented.

Solution for ISPs mucking with DNS results

[hakr89]

Don't use your ISP's DNS servers.
Find another public server or run your own.

Re:No, they didn't

[zerocool^]

Right, and while it might seem repulsive to some to have them proxy your web connections, I honestly find it more repulsive to hijack failed DNS queries, because this affects spam. Maybe it's just because I work for a professional email hosting company, but come on now. Failed dns lookup = drop mail as spam. Maybe not as critical because it's an ISP with mostly end users, but what if they're doing this to their small business customers, too?

~Wx

Re:No, they didn't

[Tim+C]

It's an important difference - 404 means that they are transparently proxying your connections

And inspecting the packet contents looking for HTTP 404 error code returns, and either modifying the returned HTML to insert their own ads or else (and much, much simpler and more practicable) discarding the rest of the data stream and substituting their own.

Hijacking DNS errors is wrong; hijacking HTTP 404 returns would be Evil.