danimal - 1:25 am on Apr 25, 2006 (gmt 0)

>>>Visitors intending to visit a particular site can be victims of misdirection, but not through the fault of the site's own name servers.<<<

afaik, that can only be 100% true if your correct website dns info is cached on all dns servers.

what if the web server for your website is also the authoritative dns server for itself?

when you type a url into your browser, the first place it goes to find the dns info is on the dns servers of your internet service provider... however, if the dns info you need isn't cached, your browser will get forwarded to the authoritative dns server for the site you want... unless it's hi-jacked!

go to this url, and type your website name into the "ISP cached DNS lookup" box near the bottom of the page:

[dnsstuff.com...]

most likely, you'll see a lot of: [No cached answer: Would go to NS of com.]

so if the dns info for your website resides only on your website, and it gets re-directed by hackers, how can you claim that it's "not through the fault of the site's own name servers"?