Why is my computer making hundreds of requests to captive.apple.com?

network catalina dns privacy

Solution 1:

I analysed the traffic with tcpdump -k port 53 (suggested by this Reddit thread), and it turns out it was expressvpnd, part of Express VPN.

That was surprising, because I didn't have Express VPN client running, but it appears to set up a demon that sends DNS queries to captive.apple.com and www.mb6gpu84.com even when the app is not running.

I removed expressvpnd and killed the process, and the requests stopped.

Related

Why does the News app lose the article you're reading when restoring
Is it possible to livestream the screen of an iPad?
Accidentally activated firmware lockscreen, how do I go back?
Update to a specific version of Safari for iPadOS
How to open mime attachments in external apps from iPhone 5S iOS 7 mail, and the best app to use
Does the "powermetrics" command line tool come pre installed on mac?
How to set a screen resolution other than what is displayed in the scaled list?
iOS Disregards Airplane Mode Setting on Reboot
Can a mac boot from an external drive, if the external drive is running an older version of macOS? [duplicate]
How can I get the Finder to show metadata?
Select row After UIPickerView is loaded
Using Python to execute a command on every file in a folder