Nxdomain redirect revenue

Christopher Morrow morrowc.lists at gmail.com
Tue Sep 27 08:27:00 CDT 2011


On Tue, Sep 27, 2011 at 7:50 AM, Jimmy Hess <mysidia at gmail.com> wrote:
> On Tue, Sep 27, 2011 at 3:57 AM, William Allen Simpson
> <william.allen.simpson at gmail.com> wrote:
> [snip]
>> Certainly, hijacking google.com NS records to JOMAX.NET would be a
>> criminal interference.  After all, that's all DNSsec signed now,
>> isn't it?
>
> I would rather see DNSSEC  and TLS/HTTPS get implemented end to end.

how does tls/https help here? if you get sent to the 'wrong host'
whether or not it does https/tls is irrelevant, no? (save the case of
chrome and domain pinning)

> The solution is to spread their name as widely as possible, so
> consumers can make an informed
> choice if they wish to avoid service providers that engage in abusive practices,
> and bring it attention to regulators if the service providers are
> acting as an abusive monopoly in regards to their interception
> practices.

sadly, not everyone has a choice in providers  :(



More information about the NANOG mailing list