So, IMO (as a security researcher familiar with DNS) this article was pretty terrible.<p>Here's a mirror of the actual source site, with links to the "data". <a href="http://gdd.i2p.xyz/" rel="nofollow">http://gdd.i2p.xyz/</a> "Data" in quotes because it's just easily falsifible text files. (From the content on the mirror, and this reddit account [1], I'm guessing that the original site was at <a href="http://gdd.i2p" rel="nofollow">http://gdd.i2p</a> )<p>You can find a diagram [2] provided by "Tea Leaves" that purports to show what was going on. Tea Leaves claims to have access to logs from CDCServices (which are included on the mirror), who are the authoriative DNS servers for "Trump-Email.com". Tea Leaves also claims that Trump-Email.com is owned by Trump (with 100% certainty... because of the WHOIS record... you can form your own opinion on that).<p>Tea Leaves also claims that only three IP addresses have made DNS requests for Trump-Email.com. Two of which (Tea Leaves claims) are associated with Alfa Bank in Russia, and one of which is associated with Spectrum Health. (See <a href="http://gdd.i2p.xyz/" rel="nofollow">http://gdd.i2p.xyz/</a> for a conspiracy theorist rant about Spectrum Health.)<p>Tea Leaves claims -- but does not provide evidence for (neither does Slate) -- that mail1.Trump-Email.com somehow restricts access to only these IP addresses. Tea Leaves claims -- but also does not provide evidence for -- that the DNS records for Trump-Email.com were pulled after Alfa Bank was contacted for a statement.<p>I do recommend reading <a href="http://gdd.i2p.xyz/" rel="nofollow">http://gdd.i2p.xyz/</a> if this is interesting to you.<p>[1] <a href="https://www.reddit.com/user/LeavesTeaLeaves" rel="nofollow">https://www.reddit.com/user/LeavesTeaLeaves</a><p>[2] <a href="https://imgur.com/SCv8X9n" rel="nofollow">https://imgur.com/SCv8X9n</a>