A couple weeks ago, I mistyped a web address in my browser and I was taken to a page run by Comcast that displayed many ads related to the words in the URL I entered. This phenomenon was covered by Slashdot and other sources. If you’ve followed me for a while, you may have seen my previous rants regarding Domaineers such as Kevin Hamm; He made deals with the countries of Colombia (.co) and Cameroon (.cm) to force any mistyped URLs to those domains (ie. google.co, google.cm) to be routed through one of his ad-laden content-light websites.
This Comcast Domain Helper service is the same sort of racket — you type in an incorrect URL, and Comcast shows you a page rich with referral links, advertisemets, and other click-thru advertising.
Anyways — what follows are instructions on “opting out” of the domain helper service, with thanks to Bonnie from Comcast, who directed me to the solution initially, as well as Matt McKimmy who suggested an alternate solution.
If you’re a n00b, here’s some super-basic background information (fellow nerds should feel free to correct me if I’m wrong here). You can also skip right to the fix.
The DNS server is a computer out in la-la-internet-land that your computer trusts to translate domain names (google.com) into IP addresses (188.8.131.52). When you open your browser and type “google.com” into the URL bar, that data is sent to your DNS server (generally, this is your internet service provider), who compares that data to their database of IP addresses. They’ll find the one that matches, and pass along the request to the appropriate computer out in la-la-internet-land, who will serve up the website and pass it back to you.
Now, normally, if you type in an address that DOESN’T exist in your DNS Server’s database, it will throw up its hands in the air, and say “Look, I have NFI what you want. Go somewhere else,” which gives you a blank page with an error message (something to the effect of “page not found”).
What Comcast has started to do is to take those bad requests and build up a page around it with information and ads relevant to your request. So if you typed “Shoe shop-a-rama” into your URL bar — that address probably doesn’t really exist (yet) but Comcast would return a page full of ads for websites that sell shoes. Perhaps that may seem innocuous, but I think this tilts the plane towards a slippery slope of consequences.
Given Comcast’s history of opposition towards net neutrality, I hesitate to give them the benefit of the doubt. If they could completely control how their users use their service (and don’t use it), I don’t think they would hesitate at all. In fact, until Net Neutrality legislation passes officially, I foresee Comcast repeatedly crippling their subscribers Internet usage.
If you think I’m being unreasonable, go see how our broadband service fares against that of Japan or other countries.
The easy correction to this DNS hijacking problem is to simply choose their opt-out DNS servers, available at this address: http://dns.comcast.net/dns-ip-addresses2.php
Richmond, IN residents will want to select the Richmond DNS servers: 184.108.40.206 (primary) and 220.127.116.11 (secondary). Jot down your DNS server addresses from this page.
Now what you do with those addresses depends on how you consume your Internet at home. If you have a LAN set up like we do (with a wireless or wired router, for example), you will need to log in to the administrative panel for that device. They almost always have a web interface (our DLink router is 192.168.0.1). If you don’t know it, then just google for your make/model and “control panel” or “admin panel”. If you’ve never set the password you can use the default one.
Inside of that panel should be an area for WAN / Internet Connection / DNS settings. There should be a line for “Primary DNS” and “Secondary DNS” — type in those addresses you got from the Comcast page and click Apply / Save / Ok. That’s it! The change should take effect immediately. Try navigating to google.com (to make sure it works) and then to weaklsjflaksej.com, to make sure you’re no longer being hijacked.
If instead you have your computer directly hooked up to the Cable Modem, you’ll just need to go to your network settings. In Windows XP, you can get to your network settings through the Control Panel. The DNS servers are set by clicking first on “TCP/IP Settings” then “Properties”. There should be a tab marked “DNS” — just change whatever is there to the ones that you got from the website. (You may have to select a “Specify my DNS manually” radio button first.)
Matt McKimmy suggested using a service like openDNS.com. You can get more information from the OpenDNS.com website, but if you’re feeling adventurous, their DNS servers are 18.104.22.168 (primary) and 22.214.171.124 (secondary). Just use those in place of the ones found on the Comcast website. OpenDNS provides free DNS service to anyone with an Internet connection. I get the impression that their DNS database is probably either vetted or regularly checked for problems.
Don’t let Comcast fool you into thinking that they have a right to tell you how you use your Internet connection. For them to filter traffic or prevent you from using it in certain ways would be like car manufacturers putting a governor on your car before you buy it, to ensure you don’t break the speed limit; or routinely clogging up the highways with obstacles when people are driving too fast.
The problem isn’t people using a lot of bandwidth, the problem is with comcast not providing enough of it. Watching videos online, streaming music online, sharing data with other people — that is the future of the Internet. It requires a true broadband, unrestricted broadband, like how other countries provide. Not faux-broadband, “hey it’s faster than dialup, right?”