New to Pi-hole, so my apologies if I’m misunderstanding some behavior here.
Been having some internet issues the past day or so, and started digging through Query Logs out of curiosity. Sorry this request doesn’t exactly fit in your Expected/Actual Behaviour model.
I guess I expected to not land on a random Pi-hole Admin Console while searching in Google for reverse DNS Lookup IPs found in my Pi-hole logs.
I was looking through my Pi-hole Query logs when I came across a bunch of reverse DNS lookups from localhost. All the IPs ended in .in-addr.arpa, and stood out as either sequential or similar in structure to my own home network, with the octets mixed around. Since I recognized some as DNS IPs (188.8.131.52.in-addr.arpa), I tried to Google one of the other sequential IPs to figure out if it was another DNS server. Searched for “184.108.40.206.in-addr.arpa pi-hole” and one of the search results took me to the pi-hole admin console here: http://220.127.116.11/admin/
I landed on a random Pi-hole web Admin Console that is not my own, but I seem to be able to click around and mess with anything I want without logging in (there’s no “logout” option).
The IP resolves to a RIPE.net, but searching their site, it looks to be an IP in a range owned by an ISP in the Netherlands called Chello.
It appears that if I wanted to, I could click any of the “Danger Zone” buttons.
I ran the Debug tool on both my Pi-hole, and the one I connected to, but both failed to upload and neither gave me a token, unless I’m missing it.