It’s starting to look like summer time here at OpenDNS. Rather than hit the beach to catch some waves, we’re hitting the books to help people surf better.

We were pleased to find out that the men and women who run the IT departments for places of learning are using OpenDNS to make their students, staff and faculty’s lives better. Check out the press release we did with the Jackson Public Schools in Mississippi. They are the largest school district in the state with over 36,000 users — and they aren’t the only school using us. Campbell County Public Schools is also using OpenDNS to give their users a better Internet experience — all 10,000 of them.

Most of the schools that use OpenDNS choose to add a custom logo (free!) in their account so that their users see a customized search results page whenever they go to a website that doesn’t exist or search from the address bar. We’ve heard some of our users refer to this as their “own personal search engine.” That’s great to hear and that’s exactly why the feature exists. If you don’t have a logo on your search results page right now, what are you waiting for?

It’s not just schools either. We found out that our neighbors across the bay in Berkeley are using OpenDNS at the Berkeley Public Library. That’s awesome. I know there are schools and libraries that don’t know what OpenDNS is yet so if you are friends with your local head geek feel free to tell him or her about the awesomeness that is OpenDNS.

Finally, are you the IT hero for your network? As you can tell from the links in this post, we’ve put out a few small press releases about some of our more interesting users. If you are using OpenDNS in a cool setting or think there’s something unique about your network feel free to send me an email (or use our contact form at the bottom of every page) and let me know. We just might ask to feature you in a blog post or a press release.

This is a long post but it’s worth the read. In short, Google and Dell have teamed up to install some software on Dell computers that borders on being spyware. I say spyware because it’s hard to figure out what it is and is even harder to remove. It also breaks all kinds of OpenDNS functionality. At the end, I’ll tell you what we’re doing about it.

About a year ago Google and Dell announced a partnership to include the Google Toolbar on new Dell computers. At the same time, Google was trying to convince the Department of Justice that changing the default search engine in the (then) new IE7 was too difficult (when in reality it’s really simple). Installing the toolbar meant that users would have Google as their default search engine in IE7. It also meant that Dell and Google would share some of the revenue from the advertising clicks that resulted from these installations, much like The Mozilla Foundation does with its Firefox browser.

The computer hardware business has razor-thin margins which means making a profit is tough. So the opportunity for Dell to get a recurring revenue stream from an existing customer long after the sale of the computer is more than just enticing, it’s huge. It also means a couple other things:

1. Dell and Google have an incentive to make it very hard for users to turn this off.
2. Because users can’t get rid of it, Dell and Google can get away with putting more ads on the page and pushing user-relevant content off the page.

The screenshot below shows what the Dell-branded Google search results page looks like when you make a typo in your address bar. You can’t even see the search results in the picture (800×600 resolution) because the entire top of the page and right side are plastered with ads.

This page isn’t being shown to Dell owners just because they have the Google Toolbar. In fact, uninstalling the Google Toolbar won’t get rid of it. Dell and Google are now installing a second program on computers that intercepts all sorts of queries that the browser would normally try to resolve. This program has no clear name and is very hard to uninstall. In some circles, people would call this spyware.

Google tries to explain the hidden software with this ambiguous statement:

Wow. Are you kidding me? In order for a user to get rid of this brokenness the person has to remove a piece of software called “Browser Address Error Redirector?” That barely makes sense to techies and it makes no sense to normal people. Would your Mom uninstall something with a name like that? I don’t think so.

Not only that, but due to some support inquiries we’ve gotten it seems like this software is being installed on older Dell computers that use some sort of automatic update service from Dell. Is this thing spreading? Ugh. How bad is it?

Let’s see what happens with certain queries and what shows up above the fold. For good measure, I’ve included what we do too, for comparison.

Typed               Dell/Google             OpenDNS
Digg.xom            Paid results            Automatically typo-corrected
Digg                Paid results            Shortcut / Search results
Digg,com            Paid results            Search results

As an aside, for every single one of these pages, OpenDNS provides an unpaid link at the top of the page asking, “Did you mean Digg.com?” If Google and Dell were really trying to give users a good experience, they would offer that, at the very least. They are certainly smart enough.

What do we do for the user?

I’ve included a screenshot of what OpenDNS shows people, too, for comparison:

Is Google being true to their roots?

I love Google’s technology, don’t get me wrong. But I think Google has turned a page here. They have now enabled a piece of software that is hard to remove and forces users to look at a really bad page. In fact, Google knows that this provides users with a dramatically worse experience.

Here’s a press release that talks about what people look at while using Google. (You can be sure Google uses similar technology internally.) Here’s a screenshot, with a red-line indicating what is below the fold.

The Dell-branded page doesn’t look anything like that at all. If you were to put a heatmap on the Dell-branded page… well, users can only look at ads. Dell and Google’s behavior here isn’t okay. Users never asked for this experience and they can’t get rid of it!

Moreover, this new “functionality” breaks things. Instead of making DNS requests, the address bar now sends single word queries to Google. This application breaks a lot of OpenDNS functionality our users love. Typo correction? Broken. Shortcuts? Broken. Google’s application breaks just about every user-benefiting feature we provide with client software that no user ever asked for.

We enjoy challenging problems at OpenDNS. But we’d rather spend our time making the Internet better rather than solving problems that shouldn’t have been created in the first place. We know that Google is capable of launching great products and services, but this isn’t one of them.

How is OpenDNS solving this problem?

Fortunately, we have a fix which does not require more client software. OpenDNS applies intelligence to the network, and we’ve stretched a bit beyond DNS itself to work around Google’s mis-directed efforts. Before I get into that, let me digress for a second:

Many of you have toolbars installed on your computer. Some of you have the Google toolbar, some have the Yahoo toolbar, and some of you have Zwinky (Don’t ask… I think little kids use it). These toolbars are able to see every single website you visit when you surf the web. Most report your surfing habits back to the company that operates the toolbar. Toolbars are something worthy to be concerned about, if only because so little attention is paid to them.

Okay, back to our solution. We did not want to enter the toolbar market. We don’t have any interest in it, and we don’t believe more software installations are the answer.

The solution to this problem was to route Google requests through a machine we run to check if the request is a typo or one of your shortcuts. If it is a typo or shortcut then we do what we always do, just fix the typo or launch your shortcut and send you off on your way. If it’s not one of those two things, we pass it on to Google for them to give you search results. This solution provides the best of both worlds: OpenDNS users get back the features that they love and Google continues to operate without problems.

I want people to know (and be sure) that we aren’t doing anything shady. We’re not spying on you. We don’t care what websites you visit. (Check our privacy policy.) Solving the issue like this allows us to fix the problems with Google (and future similar services) without having to route all your traffic through a toolbar or other service.

Below, there is a mini-FAQ. I know a bunch of you are very technical might have additional questions about how this works. We’re happy to talk about it. To keep this post from getting unwieldy I’ve made a page where you can ask all the technical questions you want. I’ll read the comments and update that page with answers as they come in.

Update: Danny Sullivan has a great write-up on this too.

Mini-FAQ

No. We are doing this URL redirection on all of our servers in all of our locations. Loading Google should take no longer than it took before we made this change. Also, all of Google’s other domains like like gmail.com and even subdomains like reader.google.com still work as they did before. We don’t re-route any of those.

No way. Absolutely not. We don’t keep copies of your cookies, your search history or anything else that would cause an AOL Search disaster. Any logs we have for technical debugging are wiped within an hour of the request, usually much sooner. We also aren’t in a position to log it for the government, and we aren’t a front for the CIA. “The Feds” already know that if they want to know what websites you visit they can just talk to your ISP, unfortunately.

Nope, but let us know if you see anything awry.

No. Typically when people try to proxy SSL pages it creates an error. We didn’t want that to happen so we did something we think is pretty clever. We actually just forward your packets on to Google when you are doing anything that is secure. This keeps your data encrypted and ensures we can’t perform a Man in the middle attack on you.

We contacted a couple of friends who work on the security side of things at Google to give them a friendly heads up. They said it’s not a technical or security problem on their end. Based on that we don’t think Google has any problem with it. The technology we’re using is pretty standard stuff.

Please read our post about Google and Dell and then ask the really technical questions here. This way we don’t have to annoy our regular users with the technical details of how we’re doing our URL redirections.

I’ll do my best to always keep this blog post updated with the answers to your questions. Your questions can be about our architecture, our reasons, or anything else you feel like asking in regards to this issue.

And starting today, it is, between Anti-Phishing Working Group and OpenDNS.

This is a big day for us, folks, and for all of you who have worked to make our community site, PhishTank.com, the most authoritative source of phishing data on the Web.

Anti-Phishing Working Group is big, and has a member list boasting companies like eBay, Microsoft, Yahoo!, Verisign and Cisco. They’ve been at phish-fighting since 2003 and have made great progress in raising awareness about the seriousness of Internet crime.

We’re young, but growing at lightning speed. The human approach OpenDNS and PhishTank bring to the table is an incredibly important element to combatting the problem.

Anti-Phishing Working Group and OpenDNS make a great team and we’re excited about what we can accomplish together.

[Cross-posted to PhishTank and OpenDNS blogs.]

We’re launching a powerful new feature today. We are giving you the power to block specific websites. That means you can protect your computer, your house, your office and anything else that uses DNS from being able to service domains that you don’t want to load. Oh, and best of all: This service is totally free.

When customers started to ask for this feature we wondered who would want this. The geeks here in the office remarked that this kind of blocking would be trivial with a Linux server and some proxy/filtering software installed. Then it quickly dawned on us. (Eureka!) It’s not just mom and dad at home who have no easy way to just block an individual domain with any ease but it’s also network administrators at offices. Network administrators can now block problem domains for their entire office in a simple way without having to pay 1000′s of dollars in new hardware and time to achieve similar functionality. Does your ISP’s DNS server let you do this?

Blocking domains is really easy. Here’s how you do it:

1. Sign in to your OpenDNS account and make sure you have a network configured.
2. Go to the Networks tab in your account and click on the Settings icon () for your network.
3. Click on the Blocked domains link and add a domain to be blocked.

You can delete or edit blocked domains on that same page. When you block a domain you block what is technically called a “zone.” This means it also blocks all sub-domains. Here’s an example. If you block craigslist.org then you’ll also be blocking la.craigslist.org (Craigslist Los Angeles) and sfbay.craigslist.org (Craigslist San Francisco), etc. If, instead, you just blocked newyork.craigslist.org then the rest of the Craigslist properties would load just fine.

When you try to visit a domain that is blocked in your network you’ll see a page that looks like this:

Since this is your network, we will show your logo on the blocked page, just as we do on the Guide pages. What? You haven’t uploaded your own logo yet? Go do it now, and go block some domains!

Let us know what you think!

He’d be mad if he knew I was actually encouraging people to listen to his live, one-hour interview tonight. Which is why I’m speed blogging while he’s stepped out of the office to run an errand.

I’ve heard David speak before and let me tell you – he’s great. Tonight’s interview by Craig Crossman of Computer America should be more of the same. Expect all of your DNS questions to be answered tonight at 7 p.m. Pacific – that’s an hour and fifteen minutes from now. I think you can even call in and ask them yourself.

Lots of radio stations play Craig’s show live, and if your local station doesn’t you can listen on the Interwebs.

If you snooze, you don’t lose. If you’re reading this after the broadcast, download the podcast here.

OpenDNS users are great. They’re smart, funny, good-looking and kind. Did I mention they’re really smart?

Especially these four guys, who put an OpenDNS shortcut link on their site.

• Paul Stamatiou of PaulStamatiou.com
• Brian Heys of BrianHeysWrites.com
• Eric Wahlforss of Eric.Wahlforss.com
• Wayne Smallman of BlahBlahTech.com

An OpenDNS shortcut link makes it easy for the hundreds of thousands of OpenDNS users to get back to your site, time and time again. Who doesn’t want that? All you do is put a link on your site that lets people create a shortcut straight to you. From that point forward, they can type something short and easy to remember into their address bar and be taken straight to your site. Simple instructions are here.

If you like being categorized with smart, funny, good-looking, kind people, you should put a shortcut link on your site, too.

We made a couple small changes to improve the way you view stats in your OpenDNS account.

1. The default stats view now shows all stats on a single page.
2. On the top of that page, you’ll see a link to a printer-friendly version.

More stats coming this summer

These are minor enhancements, but it gives me an opportunity to mention a larger project underway which will give you more granular statistics, more detailed charts, and more control over your data.

Ever wonder how many typos are corrected per day on your network? What kinds of DNS traffic you send to the Internet? The most-used shortcuts? You’ll be able to answer those questions very soon.

What other stats would you like to see? Post your ideas here.