Good luck blocking DNS over https. Doing so would require a lot of work. It is sad to see countries going the authoritarian route. This is just the start and it will get worse.
Maybe Tor would be better
this post was submitted on 09 Sep 2024
124 points (99.2% liked)
Privacy
31850 readers
116 users here now
A place to discuss privacy and freedom in the digital world.
Privacy has become a very important issue in modern society, with companies and governments constantly abusing their power, more and more people are waking up to the importance of digital privacy.
In this community everyone is welcome to post links and discuss topics related to privacy.
Some Rules
- Posting a link to a website containing tracking isn't great, if contents of the website are behind a paywall maybe copy them into the post
- Don't promote proprietary software
- Try to keep things on topic
- If you have a question, please try searching for previous discussions, maybe it has already been answered
- Reposts are fine, but should have at least a couple of weeks in between so that the post can reach a new audience
- Be nice :)
Related communities
Chat rooms
-
[Matrix/Element]Dead
much thanks to @gary_host_laptop for the logo design :)
founded 5 years ago
MODERATORS
That's the next step: drop all encrypted traffic.
It's been cancelled for now
Canceled like Google Circles? Or canceled like Microsoft Recall?
Recall, because it's definitely coming back.
Bro keep up. They doin' it again.
Despite Malaysia’s U-turn on web traffic rerouting, the ‘damage has already been done’
Doesn't DoH and DoT completely kill this?
I have configured my home router to redirect all plaintext DNS traffic through it. I did it because Chromecasts try to sidestep DNS and go straight to Google.
While doing that was a couple of lines of nftables config, blocking DoH would require an actively maintained list. Even then, it would be trivial to host your own by renting some server space.
Some time ago the Malaysian government denied access to Steam over one religious video game. Yes the whole platform over one game. So this looks like a case of the government being dumb as usual.
It has been falsely claimed that the measure undertaken by MCMC is a draconian measure
While it may be unclear exactly what kind of Internet traffic laws Draco would've written, allowing only the major landowners to run DNS servers does seem to be in keeping with the spirit of "aiding and legitimizing the political power of the aristocracy and allowing them to consolidate their control of the land and poor" as his laws are said to have done.
say what you will, but online gambling being the most blocked category is heartening to hear.
Encrypted DNS traffic => oh noed, what now?
Believe it or not, straight to jail.
pretty sure dns will fail.
Screenshotting this for the long troll
https://docs.pi-hole.net/guides/dns/cloudflared/
I use pihole+cloudflared to translate all DNS requests on my LAN to DoH requests. Regular DNS isn't permitted to leave my network. (port 53 outbound is blocked)
Can't redirect/modify/monitor DoH requests like you can plain DNS.
DoH, DoT, DoQ, DNSCrypt, or just use a VPN
I use VPN, can't be bothered with DNS anymore because i know they will pull this move.
Also it's really just a mask for easier censorship, as Malaysia had tried it before, censoring site like news site that report on government scandals, news site that focus on LGBT reporting, Fanfic, Medium, and even Steam.
Seems like using a VPN is basically inevitable now
It has been falsely claimed that the measure undertaken by MCMC is a draconian measure. We reiterate that Malaysia’s implementation is for the protection of vulnerable groups from harmful online content.
You don't need to ban privacy reapecting DNS services to ban specific websites. It's made just for spying.