Congress may require ISPs to block fraud sites H.R.3817

Christopher Morrow morrowc.lists at
Fri Nov 6 16:09:31 UTC 2009

On Fri, Nov 6, 2009 at 11:07 AM,  <sthaug at> wrote:
>> > Don't get hung up on the wording. A DNS blackhole list will do the
>> > trick as well. I don't think border ACLs on routers will be necessary.
>> do you use your ISP's dns servers? does your corporate vpn?
> A DNS blackhole list makes it *appear* as if the government/police
> is doing something.

right, so now the site I go to MUST BE the real elbonia bank site,
because... the gov't protected me!

oops :(

> "We must do something. This is something, therefore we must do it."

ah, the 'make work' plan :(

> This way of thinking is alive and well in the form of DNS based child
> porn blackhole lists in Norway and several other countries. The fact
> that anybody who is *really interested* can easily evade these lists,
> for instance by using his own DNS server, does not seem to concern
> politicians or police...

yes, though in the case of CP the properties of the user are reversed
(in my mind at least)... 'searching out content' versus stumbling upon


More information about the NANOG mailing list