[143324] in North American Network Operators' Group


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

Re: US internet providers hijacking users' search queries

daemon@ATHENA.MIT.EDU (Owen DeLong)
Sat Aug 6 05:16:59 2011

From: Owen DeLong <owen@delong.com>
In-Reply-To: <20110806010336.825891284C3D@drugs.dv.isc.org>
Date: Sat, 6 Aug 2011 02:14:16 -0700
To: Mark Andrews <marka@isc.org>
Cc: nanog@nanog.org
Errors-To: nanog-bounces+nanog.discuss=bloom-picayune.mit.edu@nanog.org


--Apple-Mail=_7FF45F80-0EF5-4AD6-BD68-0FD9B43F31E1
Content-Transfer-Encoding: quoted-printable
Content-Type: text/plain;
	charset=us-ascii


On Aug 5, 2011, at 6:03 PM, Mark Andrews wrote:

>=20
> In message <4E3C9228.4050808@paulgraydon.co.uk>, Paul Graydon writes:
>> On 08/05/2011 02:53 PM, Brielle wrote:
>>> Until they start MitM the ssl traffic, fake certs and all.  Didn't a =
certai
>> n repressive regime already do this tactic with facebook or some =
other major=20
>> site?
>>>=20
>> Syria did:=20
>> =
https://www.eff.org/deeplinks/2011/05/syrian-man-middle-against-facebook<h=
ttp
>> s://www.facebook.com/note.php?note_id=3D10150178983622358&comments>=20=

>=20
> Which is countered by DNSSEC + DANE.  A country may be able to fake =
everything
> under their tld but not the rest of the net.
>=20
Unless they start proxying all queries and putting their own trust =
anchors on all the
results.

Owen


--Apple-Mail=_7FF45F80-0EF5-4AD6-BD68-0FD9B43F31E1
Content-Disposition: attachment;
	filename=smime.p7s
Content-Type: application/pkcs7-signature;
	name=smime.p7s
Content-Transfer-Encoding: base64
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=

--Apple-Mail=_7FF45F80-0EF5-4AD6-BD68-0FD9B43F31E1--


home	help	back	first	fref	pref	prev	next	nref	lref	last	post

[143324] in North American Network Operators' Group

Re: US internet providers hijacking users' search queries

daemon@ATHENA.MIT.EDU (Owen DeLong)Sat Aug 6 05:16:59 2011

daemon@ATHENA.MIT.EDU (Owen DeLong)
Sat Aug 6 05:16:59 2011