I hope people trust 37signals.

ldng · on June 7, 2012

Well, if you don't : https://github.com/sstephenson/xipd

zaptheimpaler · on June 7, 2012

We have no proof that the code on the repo is related in any way to the code the actual site is running.

sstephenson · on June 7, 2012

You're right. I'm probably just running xip.io to steal all your sensitive development-mode form data!

mparlane · on June 8, 2012

Information you have access to:

External ip addresses of requestees. Internal ip addresses of requestees.

To some, this is very useful...

bonzoesc · on June 8, 2012

Can you be specific instead of "to some?"

zaptheimpaler · on June 9, 2012

Aha! Give me back my "foo:bar"s!

Karunamon · on June 7, 2012

You have no proof that you aren't running a rootkit logging all your keystrokes right this second ;)

sp332 · on June 8, 2012

You have no proof that you're not living in the Matix right now!

zaptheimpaler · on June 9, 2012

^This disturbs me :(

mariocesar · on June 7, 2012

If you click on the "custom DNS server" link on the site, you will get a surprise

aoberoi · on June 7, 2012

hah, they wrote it in node.

harbud · on June 8, 2012

Nice, although were I to write one, I'd probably just use PowerDNS and its pipe backend. Probably only some 30 lines of Perl/Ruby/whatever. Example: http://wiki.powerdns.com/trac/browser/trunk/pdns/modules/pip...

lilyball · on June 7, 2012

Trust them with what? All you'd be telling 37signals with this is your development server's internal IP address and the names of any subdomains you might be using. No actual site traffic will go to them.

bonzoesc · on June 7, 2012

If they do switch where xip.io points, they could see what you're doing with your dev server if your local DNS lets the resolution expire.

That said, I do trust them :)