Hacker News new | past | comments | ask | show | jobs | submit login

Well crap. I was used to going to 1.1.1.1 on my cellphone when on wireless APs that tried to redirect you an agreement page. Now there is a valid cert/website at that address.

Guess I'll have to pick a new one.




I always use http://http.rip, topical and easy to type :)


neverssl.com is probably what you're looking for.


Plenty of captive portals operators use the 1.1.1.0/24 ip subnet for their authentication pages. A shame they thought these IPs would never be used


Don't some VoIP devices use 1.1.1.1 too to check connection type or something?

There was a paper from a couple years ago when 1.1.1/24 (or bigger, don't remember) was still unassigned; at some AS they logged what kind of traffic was targeted at that subnet, by IP, port and protocol and 1.1.1.1 stood out. Can't find that paper just now unfortunately. :-(


https://www.nanog.org/meetings/nanog49/presentations/Monday/...


Lots of suggestions here but you can also use http://captive.apple.com


Switch to an example.com bookmark.

Never had any issue and there's an extremely low, almost infinitely zero, chance of the domain dropping and being taken over by squatters (re: neverssl)


Try https://neverssl.com/


I think you meant http://neverssl.com


example.org works well


I think he wants to make sure they do this at the DNS level.


No, you just need something without HTTPS so the intercepting proxy doesn't fail a certificate check.


I use cnn.com because it is HTTP-only and easy to type on a mobile keyboard.


I used to do that. Unfortunately (jk), cnn enabled https recently. I'm using example.org now.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: