[dns-operations] Hijacking DNS traffic

Noel Butler noel.butler at ausics.net
Thu Nov 23 02:38:14 UTC 2017 

On 23/11/2017 06:34, Stephane Bortzmeyer wrote:

> On Wed, Nov 22, 2017 at 11:15:53AM +1000,
> Noel Butler <noel.butler at ausics.net> wrote 
> a message of 123 lines which said:
> 
>> You obviously have no idea about the laws of Australia (or other
>> countries), ISP's are required to take all practicable effort to
>> protect the windroids from the big bad bogie mans, and required by
>> law to stop access to a large number of torrent sites
> 
> Good thing is that it is no universally enforced, as show by the RIPE
> Atlas probes (honest answer is the first one):
> 
> % atlas-resolve -r 100 -c AU thepiratebay.org
> [104.27.216.28 104.27.217.28] : 72 occurrences 
> [52.63.98.21 52.64.5.101 52.65.205.25 54.252.182.228 54.66.221.119 54.66.234.65 54.66.250.238 54.79.91.227] : 3 occurrences 
> [101.167.164.53 101.167.166.53] : 3 occurrences 
> [202.136.99.185] : 8 occurrences 
> [202.136.99.184] : 5 occurrences 
> [202.136.99.186] : 1 occurrences 
> [202.136.99.181] : 3 occurrences 
> Test #10290681 done at 2017-11-22T20:18:36Z
> 
> Congratulations, australians, for showing common sense against bad
> laws.

Although DNS manipulation is one form of acceptable action, it's not the
only one, ACL's, etc are also common. But the Court requires users to be
sent to a landing page advising of why its blocked, which is where RPZ
comes in rather nicely. 

The Federal Court has not been to anal about this as yet, but I do see a
time when hollywood shows normal DNS blocking isn't working, so Court
will order blocking at any cost, which will likely result on one of two
things, ACL's (which will only ever be a wack a mole solution), or, take
the action like some like me are doing now, that which started this
lengthy thread :) 

That said, the law is such that only ISP's named by the Federal Court
are required to block, it means hollywood cops have to go back to the
Federal Court for not only each new site, but also each new ISP they
want to enforce blocks as well, at present, only the big players and
some medium players have the Orders, there are a number of others
(mostly small players) not named and under the law as its written, are
therefor not required to block (until hollywood catches on and the court
tells them too)

-- 
Kind Regards, 

Noel Butler 

 		This Email, including any attachments, may contain legally privileged
information, therefore remains confidential and subject to copyright
protected under international law. You may not disseminate, discuss, or
reveal, any part, to anyone, without the authors express written
authority to do so. If you are not the intended recipient, please notify
the sender then delete all copies of this message including attachments,
immediately. Confidentiality, copyright, and legal privilege are not
waived or lost by reason of the mistaken delivery of this message. Only
PDF [1] and ODF [2] documents accepted, please do not send proprietary
formatted documents 

 

Links:
------
[1] http://www.adobe.com/
[2] http://en.wikipedia.org/wiki/OpenDocument
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20171123/b0605fdc/attachment.html>

More information about the dns-operations mailing list