嘟嘟社区

[疑问] dns劫持可以修改https的报文?


碰到个奇怪问题 访问:https://xxx.site
response如下:
HTTP/1.1 301 Moved Permanently
Date: Sat, 06 Jul 2024 22:57:33 GMT
Content-Type: text/html; charset=UTF-8
Connection: keep-alive
Keep-Alive: timeout=60
Set-Cookie: PHPSESSID=3u2ov9ehrjjr0fqq8s2blk8kk9c45j3f; path=/; HttpOnly
Expires: Thu, 19 Nov 1981 08:52:00 GMT
Cache-Control: no-store, no-cache, must-revalidate, post-check=0, pre-check=0
Pragma: no-cache
Set-Cookie: _sessionsid=OTE2YzNjMjUwYmRjYjM****NTY3ZjQwMThkNjE=; path=/; expires=Sat, 13 Jul 2024 22:57:33 GMT
Location: https://菠菜网
Server: nginx
Cache-Control: no-store
Strict-Transport-Security: max-age=31536000; includeSubdomains;
Content-Length: 5874

<!DOCTYPE html>
***这里是正常的网页内容

这是什么攻击手法,dns劫持应该修改不了https的内容,不是dns劫持又不像其他攻击?

dns是ip指向都劫持了。走什么协议不是被随意?
dns都劫持了,还改不了报文?