| SYSTEM INFORMATION | |
|---|---|
| OS type and version | Ubuntu Linux 22.04.5 |
| Webmin version | 2.202 |
| Virtualmin version | 7.30.3 |
| Webserver version | 2.4.52 |
Hello,
I have never added the domain “https://duumo.com/”, nor created virtual server with the domain, nor any of clients own this domain but it is redirecting to my Server’s Default Hostname page.
In the virtual servers list it is also not present there,
Can someone help me regarding this issue.
as you can see duumo.com and watermelonsystems.net resolve to the same IP address
whomever who owns duumo.com has set the dns to point at your to your IP address
doing a whois lookup may or may not help find the owner, but it will give you the abuse email address of the domains registrar which maybe able to help you remove the incorrect DNS entries for duumo.com
Thank you for your message. I wanted to clarify that I have not added duumo.com to my virtual servers list or anywhere else. And , if someone points a domain to my nameservers without properly adding it to my server, it results in an error page.
I appreciate your suggestion about doing a whois lookup. But is there any way to remove it or it’s a malware?
Whoever owns duumo.com has set the dns records to point your address this has nothing to do with your dns setup, remember dns is public and a pc will query at the dns server that it is configured to look up. As duumo.com is pointing to your ip address you could create the domin with virtualmin and then redirect it to wherever you want. If the IP is new to you this maybe due to the previous user of the IP not cleaning up their domains. Cause of action is up to you
Everyone understands what you’re saying.
There is nothing you can do about what other people configure for their DNS records. People pointing to your server is not within your control. All you can do is decide what to do when they arrive.
Normally, it would serve an error or the default website. You could put a specific error page up on that name, if you want, or you could redirect it to Google.com or whatever. Or you could redirect it to one of your sites and get free traffic (but maybe the being being redirected would be angry about not finding what they expected).
But, you don’t have any control over other people’s DNS.
Most likely cause. You can probably check AWstats to see if you get some outrageous number of hits on it. But, if it was popular and not abandoned, it would probably be properly configured.
How did you know that was happening in the first place?
you can email abuse@namecheap.com and and complain.
It maybe a abandoned domain.
Updated Date: 2024-04-15 so that may give you an idea compared to when you got the IP.
The domain “duumo.com” is using NameCheap’s default dns which are:
Hey @ID10T
I just searched for duumo in my home directory and found this:
Hey @stefan1959,
I was just checking for domains listed under my IP Address using a free tool available on internet and found this unknown domain which points to my server.
Just awstats, maybe your browsing.
I just used a service on my IP, found 1 I don’t know.
One more unknown subdomain which is: https://prevenancy-abactinally.initrdns.web-hosting.com/
is also pointing to my servers. The main domain web-hosting.com is owned by NameCheap Web Hosting Services.
You can’t do anything about other people’s DNS. I don’t know how to be more clear about that.
You can decide how your web server answers when those requests come in, but you cannot control that they come in.
Understood!
Can you tell me that how to block requests from some Domains / IP Addresses.
Like we do it in cPanel.
Thanks
cPanel manages Apache, which is presumably the web server you’re using in Virtualmin, so you can do it the same way. Look at the configuration to see what they’re doing.
They can’t really “block” it though. They can serve an error or a redirect. Blocking would have to happen at the network layer, which doesn’t generally have any idea about the name in the HTTP request. (I mean, there is layer 7 packet inspection, which Linux can do, but that’s overkill.)
Cpanel only allows blocking from a IP address not a domain that’s they going too.
You can do this in webmin section, but this is not what you want.
That can’t be what they mean, though, right?
I can certainly explain how to do anything one can do in cPanel in Virtualmin, but I need clarity about what it is they’re trying to actually do. Since it can’t be “blocking” in the firewall sense, I need to know what they’re actually doing that they’re calling blocking. What is the web server being configured to do when they say cPanel is “blocking” requests for unknown domains?
They just resolving the FQDN to a IP address and blocking requests from that IP is how I read it.
I am trying to stop a domain form accessing my server
