so few people discuss about this...am i being paranoid over this matter or they just don't care?
Btw, i already onboard with DoT/DoH, now all my devices are protected
Time and Maxis started to hijack dns query
|
|
 Aug 12 2024, 02:44 PM
Return to original view | Post
#1
|
 
Junior Member
554 posts Joined: Nov 2006  
|
|
Quote|
|
|
|
|
Aug 12 2024, 05:01 PM
Return to original view | Post
#2
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(dev/numb @ Aug 12 2024, 03:20 PM) Most Malaysians don’t care about privacy or security. With the Google Pixel 9 being announced for Malaysia, I visited all the Pixel related threads in the Mobile Phone and Kopitiam sections on this forum and entered “GrapheneOS” in the search box. Not a single hit. duh...     Guess, we are the "paranoid" one. |
|
|
Aug 14 2024, 03:58 PM
Return to original view | Post
#3
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(nazq @ Aug 13 2024, 08:06 PM) Network abruptly stopped in my case, around 7 pm here in the midst of browsing. Very slow, then showing failed DNS probe on Chrome. Yesterday Adguard having some routing issuehttps://status.adguard.com/incidents/2zb98nsz83vv nazq liked this post
|
|
|
Aug 15 2024, 04:53 PM
Return to original view | Post
#4
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(petpenyubobo @ Aug 14 2024, 08:08 PM) You should understand why when a DNS server who is now catching up as the popular choice for blocking ad trackers now suddenly experience higher downtimes. Yup..i agree..Same goes to DuckDuckGo search engine, after people started making the switch from Uncle G, it started to go out of service very often. I'm not blaming others, but their competitors don't really like them stealing away their revenues/monopoly. So my DoT setup i am still using CF for stability |
|
|
Aug 17 2024, 06:04 PM
Return to original view | Post
#5
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(The.Lucas.DaY @ Aug 17 2024, 02:56 PM) Actually can i use openwrt in my unused router, let say a Dlink dir842 stock router, to configure DoH in it? Can, just make sure your router has enough CPU & RAM to process |
|
|
Aug 29 2024, 12:19 PM
Return to original view | Post
#6
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(sadlyfalways @ Aug 29 2024, 12:06 PM) Hello, I am having issues with my Netflix and need someone with more knowledge to help me Are you sure that your Maxis fibre is in Public IP?I am using cloudflare family dns for protection from adults sites and malware I am on maxis fibre with public ip. The ip doesn’t seem to change, even when reset it’s always the same Today when I logged into my Netflix I noticed I could only watch Netflix original content I contacted Netflix and they said it’s because I’m on a vpn or proxy and my ip has been flagged The other profiles seem to be okay even on this flagged ip but for my ip, I can only watch other content if I use mobile data or use an actual vpn to access Netflix May I know if this can be caused be either cloudflare or this dns hijack thing? Why would my ip ever be flagged as a proxy by Netflix if there is something else going on How can I check this? |
|
|
|
|
|
Aug 29 2024, 12:42 PM
Return to original view | Post
#7
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(sadlyfalways @ Aug 29 2024, 12:27 PM) My ip right now is 14.192.203.192 I see, but not changing IP address after reboot seems a bit weird. I’ve never had issues accessing my NAS from outside or even Plex Usually i restart my ONU & router, i will get brand new IP address Have you complaint this issue to Maxis? But i see your issue is no related to DNS Hijack |
|
|
Aug 30 2024, 12:26 PM
Return to original view | Post
#8
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(QuantumEdge @ Aug 30 2024, 12:08 PM) I think for the past 2 days Adguard is having some issues? Websites are slow to load. Meanwhile cloudflare is 100% normal you can do like mineIf I host my own Adguard DNS, would it be affected by routing issues on adguard's side?  I set a few DNS services that is fast for my line ( you can do the DNS speed test over here: https://dnsspeedtest.online/) Then i set Parallel Requests and also Fall Back DNS servers as backup So far I did not feel any slowness and still under DoH protection as well Hope this helps go626201, The.Lucas.DaY, and 1 other liked this post
|
|
|
Sep 7 2024, 07:30 AM
Return to original view | IPv6 | Post
#9
|
|
Junior Member
554 posts Joined: Nov 2006
|
Now Time cannot access dns.google & 1.1.1.1 verify lol
|
|
|
Sep 7 2024, 07:39 AM
Return to original view | IPv6 | Post
#10
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(mystvearn @ Sep 7 2024, 07:32 AM) So using 1.1.1.1 app also cannot? What is the solution you are planning to do? I did not use the 1.1.1.1 app, i am using a paid private dnsSorry gonna lay low to avoid spy |
|
|
Sep 7 2024, 07:41 AM
Return to original view | IPv6 | Post
#11
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(PRSXFENG @ Sep 7 2024, 07:39 AM) hmm still works on my side The usual cf, google, Adguard free dnswhat's your setup Suddenly cannot visit 1.1.1.1/help or cf website, and dns.google I am using Adguard Home thou |
|
|
Sep 7 2024, 07:44 AM
Return to original view | IPv6 | Post
#12
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(PRSXFENG @ Sep 7 2024, 07:42 AM) check that none of your lists block attempts to visit those, I know i myself have dns.google intentionally blocked to avoid bypasses Sadly no 😭 I did not block those sites Anyway, just an alert to you all PRSXFENG liked this post
|
|
|
Sep 7 2024, 07:50 AM
Return to original view | IPv6 | Post
#13
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(kwss @ Sep 7 2024, 07:48 AM) Care to post of output of the command: Let me install nmap in that pc first CODE nmap -sCV -Pn -p 53,443,853 dns.google |
|
|
Sep 7 2024, 08:02 AM
Return to original view | IPv6 | Post
#14
|
|
Junior Member
554 posts Joined: Nov 2006
|
QUOTE(kwss @ Sep 7 2024, 07:48 AM) Care to post of output of the command: This is with my paid private DNS serverCODE nmap -sCV -Pn -p 53,443,853 dns.google CODE Starting Nmap 7.95 ( https://nmap.org ) at 2024-09-07 07:53 Malay Peninsula Standard Time Nmap scan report for dns.google () Host is up (0.012s latency). PORT STATE SERVICE VERSION 53/tcp open domain? 443/tcp open https? |_http-title: Google Public DNS | ssl-cert: Subject: commonName=dns.google | Subject Alternative Name: IP Address:, DNS:dns.google, DNS:dns.google.com, DNS:*.dns.google.com, DNS:8888.google, DNS:dns64.dns.google, IP Address:8.8.8.8, IP Address:8.8.4.4, IP Address:2001:4860:4860:0:0:0:0:8888, IP Address:2001:4860:4860:0:0:0:0:8844, IP Address:2001:4860:4860:0:0:0:0:6464, IP Address:2001:4860:4860:0:0:0:0:64 | Not valid before: 2024-03-08T23:38:17 |_Not valid after: 2025-03-07T23:38:17 853/tcp open domain-s? | ssl-cert: Subject: commonName=dns.google | Subject Alternative Name: DNS:dns.google, DNS:dns.google.com, DNS:*.dns.google.com, DNS:8888.google, DNS:dns64.dns.google, IP Address:8.8.8.8, IP Address:8.8.4.4, IP Address:2001:4860:4860:0:0:0:0:8888, IP Address:2001:4860:4860:0:0:0:0:8844, IP Address:2001:4860:4860:0:0:0:0:6464, IP Address:2001:4860:4860:0:0:0:0:64 | Not valid before: 2024-08-12T07:19:55 |_Not valid after: 2024-11-04T07:19:54 Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 27.45 seconds This is with CF, Google DNS server CODE Starting Nmap 7.95 ( https://nmap.org ) at 2024-09-07 07:58 Malay Peninsula Standard Time Nmap scan report for dns.google (8.8.4.4) Host is up (0.0082s latency). Other addresses for dns.google (not scanned): 2001:4860:4860::8888 2001:4860:4860::8844 8.8.8.8 PORT STATE SERVICE VERSION 53/tcp open tcpwrapped 443/tcp open ssl/https HTTP server (unknown) | fingerprint-strings: | FourOhFourRequest: | HTTP/1.0 302 Found | X-Content-Type-Options: nosniff | Access-Control-Allow-Origin: * | Location: https://dns.google/nice%20ports%2C/Trinity.txt.bak | Date: Fri, 06 Sep 2024 23:58:50 GMT | Content-Type: text/html; charset=UTF-8 | Server: HTTP server (unknown) | Content-Length: 247 | X-XSS-Protection: 0 | X-Frame-Options: SAMEORIGIN | <HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8"> | <TITLE>302 Moved</TITLE></HEAD><BODY> | <H1>302 Moved</H1> | document has moved | HREF="https://dns.google/nice%20ports%2C/Trinity.txt.bak">here</A>. | </BODY></HTML> | GetRequest: | HTTP/1.0 302 Found | X-Content-Type-Options: nosniff | Access-Control-Allow-Origin: * | Location: https://dns.google/ | Date: Fri, 06 Sep 2024 23:58:49 GMT | Content-Type: text/html; charset=UTF-8 | Server: HTTP server (unknown) | Content-Length: 216 | X-XSS-Protection: 0 | X-Frame-Options: SAMEORIGIN | <HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8"> | <TITLE>302 Moved</TITLE></HEAD><BODY> | <H1>302 Moved</H1> | document has moved | HREF="https://dns.google/">here</A>. | </BODY></HTML> | HTTPOptions: | HTTP/1.0 302 Found | X-Content-Type-Options: nosniff | Location: https://dns.google/ | Date: Fri, 06 Sep 2024 23:58:50 GMT | Content-Type: text/html; charset=UTF-8 | Server: HTTP server (unknown) | Content-Length: 216 | X-XSS-Protection: 0 | X-Frame-Options: SAMEORIGIN | <HTML><HEAD><meta http-equiv="content-type" content="text/html;charset=utf-8"> | <TITLE>302 Moved</TITLE></HEAD><BODY> | <H1>302 Moved</H1> | document has moved | HREF="https://dns.google/">here</A>. |_ </BODY></HTML> | http-server-header: | HTTP server (unknown) |_ scaffolding on HTTPServer2 | ssl-cert: Subject: commonName=dns.google | Subject Alternative Name: IP Address:8.8.4.4, DNS:dns.google, DNS:dns.google.com, DNS:*.dns.google.com, DNS:8888.google, DNS:dns64.dns.google, IP Address:8.8.8.8, IP Address:2001:4860:4860:0:0:0:0:8888, IP Address:2001:4860:4860:0:0:0:0:8844, IP Address:2001:4860:4860:0:0:0:0:6464, IP Address:2001:4860:4860:0:0:0:0:64 | Not valid before: 2024-03-08T23:58:42 |_Not valid after: 2025-03-07T23:58:42 |_http-title: Google Public DNS 853/tcp open ssl/domain (generic dns response: SERVFAIL) | ssl-cert: Subject: commonName=dns.google | Subject Alternative Name: DNS:dns.google, DNS:dns.google.com, DNS:*.dns.google.com, DNS:8888.google, DNS:dns64.dns.google, IP Address:8.8.8.8, IP Address:8.8.4.4, IP Address:2001:4860:4860:0:0:0:0:8888, IP Address:2001:4860:4860:0:0:0:0:8844, IP Address:2001:4860:4860:0:0:0:0:6464, IP Address:2001:4860:4860:0:0:0:0:64 | Not valid before: 2024-08-12T07:19:55 |_Not valid after: 2024-11-04T07:19:54 | fingerprint-strings: | DNSVersionBindReqTCP: | version |_ bind |_ssl-date: TLS randomness does not represent time 2 services unrecognized despite returning data. If you know the service/version, please submit the following fingerprints at https://nmap.org/cgi-bin/submit.cgi?new-service : ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port443-TCP:V=7.95%T=SSL%I=7%D=9/7%Time=66DB9738%P=i686-pc-windows-wind SF:ows%r(GetRequest,201,"HTTP/1\.0\x20302\x20Found\r\nX-Content-Type-Optio SF:ns:\x20nosniff\r\nAccess-Control-Allow-Origin:\x20\*\r\nLocation:\x20ht SF:tps://dns\.google/\r\nDate:\x20Fri,\x2006\x20Sep\x202024\x2023:58:49\x2 SF:0GMT\r\nContent-Type:\x20text/html;\x20charset=UTF-8\r\nServer:\x20HTTP SF:\x20server\x20\(unknown\)\r\nContent-Length:\x20216\r\nX-XSS-Protection SF::\x200\r\nX-Frame-Options:\x20SAMEORIGIN\r\n\r\n<HTML><HEAD><meta\x20ht SF:tp-equiv=\"content-type\"\x20content=\"text/html;charset=utf-8\">\n<TIT SF:LE>302\x20Moved</TITLE></HEAD><BODY>\n<H1>302\x20Moved</H1>\nThe\x20doc SF:ument\x20has\x20moved\n<A\x20HREF=\"https://dns\.google/\">here</A>\.\r SF:\n</BODY></HTML>\r\n")%r(HTTPOptions,1E1,"HTTP/1\.0\x20302\x20Found\r\n SF:X-Content-Type-Options:\x20nosniff\r\nLocation:\x20https://dns\.google/ SF:\r\nDate:\x20Fri,\x2006\x20Sep\x202024\x2023:58:50\x20GMT\r\nContent-Ty SF:pe:\x20text/html;\x20charset=UTF-8\r\nServer:\x20HTTP\x20server\x20\(un SF:known\)\r\nContent-Length:\x20216\r\nX-XSS-Protection:\x200\r\nX-Frame- SF:Options:\x20SAMEORIGIN\r\n\r\n<HTML><HEAD><meta\x20http-equiv=\"content SF:-type\"\x20content=\"text/html;charset=utf-8\">\n<TITLE>302\x20Moved</T SF:ITLE></HEAD><BODY>\n<H1>302\x20Moved</H1>\nThe\x20document\x20has\x20mo SF:ved\n<A\x20HREF=\"https://dns\.google/\">here</A>\.\r\n</BODY></HTML>\r SF:\n")%r(FourOhFourRequest,23F,"HTTP/1\.0\x20302\x20Found\r\nX-Content-Ty SF:pe-Options:\x20nosniff\r\nAccess-Control-Allow-Origin:\x20\*\r\nLocatio SF:n:\x20https://dns\.google/nice%20ports%2C/Trinity\.txt\.bak\r\nDate:\x2 SF:0Fri,\x2006\x20Sep\x202024\x2023:58:50\x20GMT\r\nContent-Type:\x20text/ SF:html;\x20charset=UTF-8\r\nServer:\x20HTTP\x20server\x20\(unknown\)\r\nC SF:ontent-Length:\x20247\r\nX-XSS-Protection:\x200\r\nX-Frame-Options:\x20 SF:SAMEORIGIN\r\n\r\n<HTML><HEAD><meta\x20http-equiv=\"content-type\"\x20c SF:ontent=\"text/html;charset=utf-8\">\n<TITLE>302\x20Moved</TITLE></HEAD> SF:<BODY>\n<H1>302\x20Moved</H1>\nThe\x20document\x20has\x20moved\n<A\x20H SF:REF=\"https://dns\.google/nice%20ports%2C/Trinity\.txt\.bak\">here</A>\ SF:.\r\n</BODY></HTML>\r\n"); ==============NEXT SERVICE FINGERPRINT (SUBMIT INDIVIDUALLY)============== SF-Port853-TCP:V=7.95%T=SSL%I=7%D=9/7%Time=66DB973D%P=i686-pc-windows-wind SF:ows%r(DNSVersionBindReqTCP,20,"\0\x1e\0\x06\x81\x82\0\x01\0\0\0\0\0\0\x SF:07version\x04bind\0\0\x10\0\x03"); Service detection performed. Please report any incorrect results at https://nmap.org/submit/ . Nmap done: 1 IP address (1 host up) scanned in 72.56 seconds Jeezzz now it working back to normal, but i managed to keep the screenshot the moment when it is not working  |
| Change to: |  0.0321sec
 0.66
 7 queries
 GZIP Disabled
Time is now: 1st December 2025 - 01:41 PM |
All Rights Reserved © 2002- 2025 Vijandren Ramadass (~unite against racism~)
Powered by Invision Power Board © 2025 IPS, Inc.