As I was reviewing my logs (you check your logs don’t you) I noticied some strange entries:
Jul 21 04:36:12 lewis pdns[6664]: Not authoritative for ‘onelata.com’, sending servfail to 198.81.129.193
Jul 21 04:39:57 lewis pdns[6664]: Not authoritative for ‘v-drive.com’, sending servfail to 65.54.237.135
What’s strange about this is that I do own the domains, but I have never done anything with them. My curiosity peaked I decided to do a whois on the IP addresses and see where they came from.
The first one was pretty straight forward (65.54.237.135), Microsoft has plenty of search engine applications, who knows what they are really up to.
The second one (198.81.129.193) is a little more confusing. Why is the CIA (as in the United States Central Intelligence Agency) trying to query DNS records for an unused domain?
Does anyone know what this is?