Slashdot Mirror

← Back to Stories (view on slashdot.org)

Security Consultants Warn About PROTECT-IP Act

Posted by samzenpus on from the danger-danger-danger dept.

epee1221 writes "Several security professionals released a paper raising objections to the DNS filtering(PDF) mandated by the proposed PROTECT-IP Act. The measure allows courts to require Internet service providers to redirect or block queries for a domain deemed to be infringing on IP laws. ISPs will not be able to improve DNS security using DNSSEC, a system for cryptographically signing DNS records to ensure their authenticity, as the sort of manipulation mandated by PROTECT-IP is the type of interference DNSSEC is meant to prevent. The paper notes that a DNS server which has been compromised by a cracker would be indistinguishable from one operating under a court order to alter its DNS responses. The measure also points to a possible fragmenting of the DNS system, effectively making domain names non-universal, and the DNS manipulation may lead to collateral damage (i.e. filtering an infringing domain may block access to non-infringing content). It is also pointed out that DNS filtering does not actually keep determined users from accessing content, as they can still access non-filtered DNS servers or directly enter the blocked site's IP address if it is known. A statement by the MPAA disputes these claims, arguing that typical users lack the expertise to select a different DNS server and that the Internet must not be allowed to 'decay into a lawless Wild West.' Paul Vixie, a coauthor of the paper, elaborates in his blog."

43 of 298 comments (clear)

  1. Decay? by wsxyz · · Score: 5, Insightful

    When was the Internet anything other than a "lawless wild west"?

  2. typical users by buback · · Score: 5, Insightful

    15 years ago, 'typical users' didn't know how to use napster. 6 years ago, 'typical users' didn't know how to bittorrent.

    This kind of argument shows how little they've learned.

    1. Re:typical users by CSMatt · · Score: 4, Informative

      15 years ago, 'typical users' didn't know how to use napster

      I should think not, since Napster didn't exist until 1999.

    2. Re:typical users by TubeSteak · · Score: 5, Insightful

      The typical user knows exactly as much as they need to (or slightly less) in order to go about their business.
      When schools and businesses started filtering video/social networking/etc the "typical" user was introduced to web based proxies.
      If the **AA manages to push through DNS tampering, the typical user will be introduced to alternative DNS servers and even more proxies.

      The internet routes around damage.

      --
      [Fuck Beta]
      o0t!
    3. Re:typical users by scdeimos · · Score: 2

      No ISP I've ever worked at logged DNS requests and responses. Not for law-enforcement purposes, anyway. All your usage bills are based on traffic crossing the border routers - you can rest assured the src and dst IPs on every single one of those packets is recorded and linked to your account.

  3. politicians (hock...patoooiiiii) by xmundt · · Score: 3, Interesting

    Greetings and Salutations....
              Why does this seem like one of those "feel good" laws that politicians pass to get brownie points with their followers, rather than to actually address and fix a problem?
                I am more and more convinced that attempts to regulate the Net are a bad idea, and, any official that attempts to do this should be voted out of office or recalled.

    --
    YAB - http://blog.beemandave.com/
    1. Re:politicians (hock...patoooiiiii) by DigiShaman · · Score: 5, Insightful

      That's the intent. To create a law that addresses one political issue while at the same time creating several new problems. THIS IS BY DESIGN. It's the political gift that keeps on giving back to legislatures. It's purely justification to expand the government at the expense of public tax dollars. How in the fuck this is news to anyone proves we still live in a sick, sad world. It should be ingrained into every child from birth that large government = evil!

      --
      Life is not for the lazy.
    2. Re:politicians (hock...patoooiiiii) by splutty · · Score: 2

      Uhm..

      What century are you living in exactly?

      --
      Coz eternity my friend, is a long *ing time.
    3. Re:politicians (hock...patoooiiiii) by Vectormatic · · Score: 2

      First, the idea of a russian invasion into any part of europe is laughable. Second, no one is advocating getting rid entirely of the US military.

      The point is that it would be a good idea to stop letting the war industry run the US. Every time the CxOs needs a new yaught/villa/whatever, they send some kickbacks to their friends in high places, and a war on $EVIL is started and bilions are spent on weapons etc.. Keeping a MAD-capable nuclear arsenal and a few carier groups operational isnt the same as going on a never-ending tour of the middle east.

      --
      People, what a bunch of bastards
    4. Re:politicians (hock...patoooiiiii) by AmiMoJo · · Score: 3, Interesting

      large government = evil!

      Such a blanket statement is nonsense. In the UK the National Health Service is a massive government run institution and despite its problems is still many times better than what private healthcare in the US can deliver. The public is broadly in favour of expanding it and pumping in more money, so much so that all parties at the last election declared their intent to shield the NHS from spending cuts that every other public institution would have to bare.

      --
      const int one = 65536; (Silvermoon, Texture.cs)
      SJW, n: "Someone I don't like, and by the way I'm a fuckwit" - AC
  4. Idiots by governorx · · Score: 5, Insightful

    The typical users will quickly learn how to set their DNS providers if this comes to pass.

    1. Re:Idiots by moj0joj0 · · Score: 3, Insightful

      The typical users will quickly learn how to set their DNS providers if this comes to pass.

      Say rather that the users who are interested will quickly learn.

      ISPs will not be able to improve DNS security using DNSSEC, a system for cryptographically signing DNS records to ensure their authenticity, as the sort of manipulation mandated by PROTECT-IP is the type of interference DNSSEC is meant to prevent.

      We shouldn't forget the massive amounts of users that are oblivious to nearly any of this. DNS, IP Addresses, Routing protocols and all the rest of the "magic" of the Internet is well past their horizon. Please keep in mind how reasonable this would appear to the average Jane and Joe Six-Pack.

      The measure allows courts to require Internet service providers to redirect or block queries for a domain deemed to be infringing on IP laws.

      On the surface this looks like a great thing. Understanding the technology or anything past double-clicking the blue "e", or perhaps clicking a link in their e-mail, is not something a more advanced user should expect. While we can understand the potential difficulties and pitfalls that come with this sort of meddling, I don't think we should see them as so obvious that the basic user will also see them.

    2. Re:Idiots by fuzzyfuzzyfungus · · Score: 2

      The typical users will quickly learn how to set their DNS providers if this comes to pass.

      Unfortunately, some unknown; but nontrivial, number of them will learn to set their DNS providers by obtaining from an incrementally more clueful friend and running "l33tt0rr3ntz_DNS_Crack.exe". This will, in fact, recofigure their system's DNS settings to point to somewhere in the free world; but it might, well, invite a few buddies in...

    3. Re:Idiots by black3d · · Score: 5, Insightful

      How can that be a good thing by any means? "Deemed to be infringing" is extremely broad. I've had cease and desists sent to my own website for MP3s of my own music which I own entirely. With this law, they don't even need to attempt to prosecute me. They just file notice with the court that my domain is "infringing" and suddenly my hits go to 0. I have no right of reply as I've never been served.

      I intend no personal insult, but you seem to forget that what the US courts deem as "infringing" draws no parallels to actual international copyright law. For example, a site which contains no pirated material but contains links to it, is considered as infringing under US copyright laws (see DMCA). If you haven't noticed, the MPAA and RIAA will stop at nothing and have no qualms about how many people they inconvenience. Baidu.cn contains an MP3 section. Does it host MP3s? No. Does that matter to a court which orders all ISPs to block access to Baidu as a result? Of course not.

      This law like this gives the MPAA the legal right to have Google.com blocked until it removes all links to pirated material. I don't believe they'd hesitate for a second. Although TBH, they probably need it, in order to search for more meta sites which may or may not link to "deemed infringing" material. Like my personal music.

      While of course, this horrific scenario may not occur, the point is, this will allow the MPAA to go nuts. They don't care if they knock out 10,000 sites like my own. They don't have to serve me, so there's no case to win. And when they get it wrong, I can't sue the MPAA, because the MPAA didn't make the "ruling", the court did.

      They'll happily have Metacafe block because some video has a soundtrack they own, or have any NNTP Usenet provider closed because, despite all their legal offerings, they can be deemed to be serving infringing material. A Safe-Harbour doesn't apply here as they're not actually filing a DMCA takedown. They're just having the court look at all the pirated material and say "this means ISPs have to block them." Goodbye Giganews. I'm sure such sites can go through and remove all material deemed infringing, but exactly how do you go about doing this? MPAA doesn't care - they only have to prove one instance of pirated material. Yet before, say, Giganews can file an appeal, they have to go about removing all potentially infringing material from their usenet mirror? For that matter, how does Google go about removing all links to "potentially infringing" material from their servers?

      --
      "The true measure of a person is how they act when they know they won't get caught." - DSRilk
    4. Re:Idiots by AmberBlackCat · · Score: 3, Interesting

      My nieces and nephews all got MacBooks issued to them from their school. Just like the ones in that webcam scandal. So the school had a firewall installed that was supposed to block inappropriate sites. It was amazing how fast people, who had never owned a computer before, learned how to use a proxy, and learned to put that s on the end of https because apparently the firewall didn't filter sites using ssl. And one of the first things they learned was electrical tape defeats the webcam.

      Cousins got iPhones. It was amazing how people who didn't even know what firmware was learned the concept of jailbreaking. No, they didn't all know how to do it. But they knew how to go on Facebook and ask "does anybody know how to jailbreak an iPhone"?

      The moral of this story is, if you try to take it away and there is a way to get it back, they'll find it even if they have no idea how to do it right now. It's not that they're incapable of learning. It's they have had no reason to up until now.

    5. Re:Idiots by 1u3hr · · Score: 2

      Say rather that the users who are interested will quickly learn.

      There will be simple one-click apps to do it for the rest. And shortly after, Trojans masquerading as such.

    6. Re:Idiots by wvmarle · · Score: 2

      The typical users will quickly learn how to set their DNS providers if this comes to pass.

      Say rather that the users who are interested will quickly learn.

      And the ones that are hit by such filtering are probably also the ones that are interested to route around it. If only by posting on their local message board "The Internetz seem broken, I can't reach The Pirate Bay any more!", likely quickly replied to by someone giving some overseas DNS and telling them how to change their settings to use that one. The ones that aren't affected will not change their settings, but then they're not affected to begin with so no reason for them to change it in the first place.

  5. typical users by Joce640k · · Score: 2

    Experts: "they can still access non-filtered DNS servers or directly enter the blocked site's IP address if it is known"

    MPAA: "typical users lack the expertise to select a different DNS server"

    Dear MPAA,

    What about the other half of the expert's statement? Typical users are perfectly capable of typing in four numbers with periods between them. Web links and bookmarks can be IP addresses. etc.

    --
    No sig today...
  6. Kay Bailey Hutchison defends PROTECT-IP by paulsnx2 · · Score: 5, Informative

    I sent my senator a short message detailing many of these concerns about the PROTECT-IP bill. You might be interested in her response.... WARNING: Don't read any further if you still have hope that senators can understand and address technology issues....

    Dear Friend:
    Thank you for contacting me regarding the Federal Communications Commission's actions relating to the openness of the Internet. I welcome your thoughts and comments.

    The Internet is a valuable tool that facilitates business, education, and recreation for millions of Americans. In 2009, an estimated 198 million Americans had access to the Internet. I am committed to ensuring that consumers continue to benefit from the Internet as an open platform for innovation and commerce.

    Instrumental to the success of the Internet is the long-standing policy of keeping the Internet as free as possible from burdensome government regulations. Increased investment in upgrading and expanding America’s communications infrastructure, and, in particular, new broadband networks, will ensure that all Americans have access to affordable high-speed Internet. However, in my judgment, intensified regulation of the Internet, such as government-mandated treatment of data, would stifle competition and would decrease the incentive for network operators to invest in critical infrastructure.

    The case for additional broadband regulatory authority, or “net neutrality,” has not effectively been made. Broadband investment began to truly flourish when the Federal Communications Commission (FCC) made a decision in 2002 to remove advanced communications technologies from the antiquated common carrier regulatory framework. However, advocates of a larger regulatory footprint have continued to call for net neutrality since 2006.

    Unfortunately, the FCC chose to respond by beginning a new proceeding that would reverse the 2002 decision to treat advanced communications services with a "light touch" regulatory approach. On December 21, 2010, by a 3-2 vote, the FCC adopted new rules meant to impose a net neutrality regime on broadband services. I believe these new regulations represent an unprecedented power grab by the Commission to claim regulatory jurisdiction without Congressional authority. This FCC action threatens investment and innovation in broadband systems, places valuable American jobs at risk, and may subject communications companies to new legal liability in the management of their networks.

    In response to the FCC's heavy-handed order, I intend to explore every option available to me to keep the Internet free from such burdensome regulations, including introducing a resolution of disapproval in an effort to repeal the new rules. As the Ranking Member of the Senate Commerce, Science, and Transportation Committee, which has jurisdiction over the FCC, I will continue to work to prohibit further net neutrality-based regulations.

    I appreciate hearing from you, and I hope that you will not hesitate to contact me on any issue that is important to you.

    Sincerely,
    Kay Bailey Hutchison
    United States Senator

    284 Russell Senate Office Building
    Washington, DC 20510
    202-224-5922 (tel)
    202-224-0776 (fax)
    http://hutchison.senate.gov/

    PLEASE DO NOT REPLY to this message as this mailbox is only for the delivery of outbound messages, and is not monitored for replies. Due to the volume of mail Senator Hutchison receives, she requests that all email messages be sent through the contact form found on her website at http://hutchison.senate.gov/?p=email_kay .

    If you would like more information about issues pending before the Senate, please visit the S

    1. Re:Kay Bailey Hutchison defends PROTECT-IP by ilumits · · Score: 2

      I think she sent you the wrong form response. What's amusing is that if she's against government regulation of the Internet, then undoubtedly she should oppose the PROTECT-IP Bill.

      I'm guessing that's not the case.

    2. Re:Kay Bailey Hutchison defends PROTECT-IP by rrohbeck · · Score: 3, Informative

      I think she wouldn't know the difference and this is the form response to any complaint about the tubes.

      --
      thegodmovie.com - watch it
    3. Re:Kay Bailey Hutchison defends PROTECT-IP by Opportunist · · Score: 2

      Dear Senator, thank you for your reply.

      It certainly affirmed my hunch that you don't have a clue what you're talking about or trying to regulate. In case you didn't notice, PROTECT-IP doesn't have anything to do with net neutrality. My guess is that your henchman just saw "oh, teh intarnets" and sent out the matching form letter, neither understanding what was said nor understanding what he or she sent as a reply. I suggest firing him or her and using a program as replacement that checks for certain catchwords and -phrases and sends back the matching form letter.

      But probably you are way ahead of me in this matter and that's already what I got. Impersonal "shut up, voting drone, and serve your queen bee" drivel, spewed out by a form script engine. At least I hope so. If this was actually written by you, I guess we should fire you and replace you with a small script.

      It would be so much cheaper for the country and so much better for the economy you seem to care so much about.

      --
      We used to have a Bill of Rights. Now, with the rights gone, all we have left is the bill.
    4. Re:Kay Bailey Hutchison defends PROTECT-IP by thomst · · Score: 2

      I sent my senator a short message detailing many of these concerns about the PROTECT-IP bill. You might be interested in her response.... WARNING: Don't read any further if you still have hope that senators can understand and address technology issues....

      First of all, let me extend to you my deepest sympathies on your unfortunate status as a Texan. We're all hoping for your speedy recovery from this tragedy.

      Secondly: "Kay Bailey Hutchison" is all you need to read to know that your carefully-phrased attempt at intelligent communication with your elected Senator was a thoroughgoing waste of time and effort. Texas Republican, former governor, and "honest politician" (i.e. - she stays bought).

      Of course, it could have been worse ... you could have tried to reason with Michele Bachmann, instead.

      --
      Check out my novel.
  7. In summary: by fuzzyfuzzyfungus · · Score: 3, Insightful

    Laundry list of distinguished security researchers: "This is a terrible plan, it won't achieve what you want, and it will set back the state of internet security quite dangerously."

    MPAA Flack: "Shut up, nerd, the health and security of the internet is not even a secondary objective here."

    1. Re:In summary: by Daniel+Dvorkin · · Score: 3, Informative

      Yep. And here's what the powers-that-be will hear:

      Laundry list of distinguished security researchers: "Blah blah nerd stuff neep neep neep."

      MPAA Flack: "We wear suits. And we have money. By the way, Senator, how's that third vacation home working out for you?"

      --
      The correlation between ignorance of statistics and using "correlation is not causation" as an argument is close to 1.
  8. Lawless wild west by Datamonstar · · Score: 2

    Yes! Once they get trains going over 50 MPH on the wild frontier of the Information Superhighway tubes then you have all sorts of stuff going on, like women's uteri being ripped right out of em. We can't have that. It's the internet and we need porn on it. For that we need women with intact uteri.

    --
    The eternal struggle of good vs. evil begins within one's self.
  9. ISP Blocking? by AlphaWolf_HK · · Score: 3, Insightful

    Interesting that they mention ISP's would block your ability to use other DNS servers. I don't think that, in the end, there is really anything the ISP could do to completely stop you. The worst they could do is block UDP port 53, but that wouldn't stop you from using any kind of tunneling software, especially if you did that tunneling over a secure socket.

    --
    Careful with names containing L slashdot.org/~AiphaWolf_HK slashdot.org/~AlphaWoif_HK slashdot.org/~AiphaWoif_HK
  10. direct IP addresses by reiisi · · Score: 2

    No, their use is not particularly harder to track.

    --
    Computer memory is just fancy paper, CPUs just fancy pens with fancy erasers; the 'net is just a fancy backyard fence.
  11. Wrong, there are laws, and this breaks one of them by SuperKendall · · Score: 5, Interesting

    When was the Internet anything other than a "lawless wild west"?

    The internet is the wild west, but it is far from lawless... it just so happens that there are very few laws.

    One of those laws is the trustworthiness of DNS. The proposal at hand is actually one that makes the internet MORE lawless, not less, as DNS falls utterly as the (relatively) trustworthy backbone of the internet it has been until today.

    Who would knowingly point to a DNS server that might mislead them after this is passed? I sure wouldn't.

    --
    "There is more worth loving than we have strength to love." - Brian Jay Stanley
  12. A new DNS system is urgent by Lord+Juan · · Score: 2

    A fork of the DNS system is something that I can't wait to see happening. I believe that the changes that ICANN is doing are precisely mean to obstruct the adoption of additional independent TDLs, and honestly if the DNS is not forked soon, attempting to do it later is going to create fragmentation and confusion, specially when ICANN sell some of the independent TLDs that belong to the alternative DNS systems nowadays. I am also, mmm, I'll go with angry, at the ICE taking away domains of companies that operate legally in their own countries (rojadirecta), and I simply don't think that ICANN or the US can be trusted anymore with the control of this vital component of Internet. The RIAA/MPAA have way so much control over the government, and the government have way so much control over ICANN, and ICANN have complete control of the DNS system.

  13. Precisely by Sycraft-fu · · Score: 3

    In particular, because these sorts of things would get asked about and talked about. People would learn "Just enter these numbers under DNS and stuff will work again," and they'd do it. Setting DNS servers is not complex, users can easily be taught how to do it, just nobody bothers because they needn't do so. DHCP hands them out and it makes sense to use the ones your ISP provides as they are usually the fastest for you. However it isn't some major technical feat to enter the numbers in the box. There would be sites out there listing unfiltered DNS servers and people would just copy and paste.

    1. Re:Precisely by DarkOx · · Score: 2

      1. That would would for like a week until someone id10t in CONgress decides ISPs simply have to redirect all tcp/53 or udp/53 traffic to a compliant DNS server. which will of course give rise to plenty of shareware/donationware DNS proxy applications that let you point your system nss library resolver at localhost, and then that app turns around runs DNS on some other port, perhaps even with an SSL layer to thwart packet inspection.

      2. The other issue is DNSSec. I don't don't agree with the TFA that this prevents ppl from using DNSSEC. DNSSEC is record level authenticity and integrity. Its not system level. If I am molesting your DNS in a DNSSEC world, I can't tell you www.google.com points to 64.220.36.5, without your being able to see the signature is not correct. If I send you SERVFAIL though even if you can't easily distinguish that from adulterated record with most software in use. Even when you can what do about it? Your local resolve should say SERVFAIL when the DNSSEC record is invalid, application stops, my DNS server refuses to tell you the address application stops, sure you might know better and know that names out there but what can do about it? Return to part 1?

      --
      Repeal the 17th Amendment TODAY! Also Please Read http://www.gnu.org/philosophy/right-to-read.html
  14. Re:Wrong, there are laws, and this breaks one of t by wvmarle · · Score: 2, Insightful

    The vast majority of Internet users doesn't know their DNS, they probably don't even know what DNS is. They just open their browser (better known as "the Internet"), enter www.slashdot.org and expect to be able to read News for Nerds, Stuff that matters. Maybe not the best example but I bet you get the point.

    typical users lack the expertise to select a different DNS server

    is definitely a true statement.

  15. Wow. fucked up morons. by unity100 · · Score: 5, Informative

    A statement by the MPAA disputes these claims, arguing that typical users lack the expertise to select a different DNS server and that the Internet must not be allowed to 'decay into a lawless Wild West.

    dns filtering came to turkey 5 years ago.

    EVERYONE knows how to bypass it now. and i mean everyone who is using internet - the equivalent of the 'mom in idaho' knows how to bypass it. her son, relatives, someone from neighborhood comes and bypasses it for her. people learned what 'opendns' means here. the term 'proxy' have become an everyday term, even in among the tech illiterate crowd. people ask about 'good proxy' to each other. (people learned about it when the courts started to ban i.p.s).

    so, random 'mom in turkey' is able to do that, but the organization that represents all movie producers in america shits about otherwise ?

    really. what kind of people are you letting you run your country and corporations and corporations' lackey organizations ? idiots ? morons ? bastards ? i think the last one is more likely. (i am not able to bring myself to say ngo regarding mpaa after that kind of idiocy)

    --
    Read radical news here
  16. Re:Wrong, there are laws, and this breaks one of t by Anonymous Coward · · Score: 2, Insightful

    the point is that will change in about 3 days across the USA if the USA tries this. It's not the first country to try DNS filtering, and perhaps despite what recent history might lead one to believe, americans aren't significantly more stupid than people in other countries, which nowadays routinely route around incompetent government/corporate attempts to censor the net.

  17. Re:Wrong, there are laws, and this breaks one of t by c0lo · · Score: 3, Insightful

    typical users lack the expertise to select a different DNS server

    is definitely a true statement for the present.

    FTFY.

    And it is so just because the DNS infrastructure worked by very unsophisticated rules - good enough for everybody - unsophistication which allowed the rules remain hidden. Break them and more people will start looking into how to mend them in their own way - one may not like some ways of mending.

    --
    Questions raise, answers kill. Raise questions to stay alive.
  18. Doesn't have to conflict with DNSSEC by kasperd · · Score: 2

    Technically it doesn't have to conflict with DNSSEC.

    First of all ISPs have to stop lying about the A record when you look up a filtered domain (Seems like an oversight if that practice is even legal). Instead they need to send an error response back to the user. I'd suggest a server error message (since "your government don't want you to see this" wasn't included as an error code when DNS was designed).

    What the client will do when getting this error is to use the DNS search path provided by the DHCP server along with the DNS server IP. Since the ISP controls the search path, they can ensure it is a domain under which they can provide valid DNSSEC protected domains. Then they make it so that every filtered domain exists as a subdomain under the DNS search path and other domains don't exist there.

    --

    Do you care about the security of your wireless mouse?
  19. Re:Wrong, there are laws, and this breaks one of t by greenbird · · Score: 4, Insightful

    typical users lack the expertise to select a different DNS server

    is definitely a true statement.

    What it is is bullshit. There would be directions floating around everywhere written at a second grade level on how to do it. If they couldn't figure it out from there they'd ask that tech suave friend or relative to do it. Linux would come pre-configured to hit OpenDNS.

    Where in the problem lies is that half the instructions floating around would be pointing to compromised servers. Thus by eliminating the trust aspect that is key to DNS working and making DNSSEC essentially illegal they're going to create exactly what they claim to be trying to prevent, turning the internet into a lawless wild west. I find it absolutely amazing that congress is going to pass a law that will make implementing security measures on the internet illegal. Tells you how deep our government representatives are in the pockets of the RIAA/MPAA crowd.

    --
    Who is John Galt?
  20. Re:Wrong, there are laws, and this breaks one of t by BlueStrat · · Score: 3

    When was the Internet anything other than a "lawless wild west"?

    The internet is the wild west, but it is far from lawless... it just so happens that there are very few laws.

    One of those laws is the trustworthiness of DNS. The proposal at hand is actually one that makes the internet MORE lawless...

    Indeed. Funny thing, this requires judges and lawyers being woven into the fabric of internet - I don't like the idea.

    And politicians.

    Don't forget the damned politicians.

    Politicians, lawyers, and judges.

    The Unholy Trinity.

    Of course, it was inevitable that a source of such wealth, information, and power available to the unwashed such as the internet would become a target for control for such as they.

    It had to happen. They by their very nature are unable to tolerate anything that empowers regular people unless it's been made "safe"..."safe" from use against *them* by the people, and "safe" against regular people using it to communicate information, ideas, and wealth created independently from, and unmonitored by, those in power.

    I'm surprised the freedom of the internet hasn't been attacked more intensely and with more determination than it has at this point in the 'net's history.

    I guess looting the country and the citizens while trying to turn it into a Third-World hellhole takes most of their attention. It must be really hard work, too, judging by the number of vacations they take on the taxpayer's dime.

    Strat

    --
    Progressivism (aka US 'Liberalism'): Ideas so good they need a police/surveillance-state to enforce.
  21. Re:Wrong, there are laws, and this breaks one of t by Eraesr · · Score: 2

    But everyone has a family member or acquaintance who does have that knowledge, and they won't hesitate to ask "hey can you fix the pirate bay for me".

  22. Re:Wrong, there are laws, and this breaks one of t by EdIII · · Score: 5, Insightful

    True statement? Really?

    A statement by the MPAA disputes these claims, arguing that typical users lack the expertise to select a different DNS server and that the Internet must not be allowed to 'decay into a lawless Wild West.'

    Hmmmmmmm. Let me rephrase that differently.....

    An inter-office memo from Microsoft was recently released with a statement by an executive arguing that the typical user lacks the expertise to choose a different browser and that apathy and ignorance will allow the Internet to continue to be dominated by Internet Explorer and that the Internet will not devolve into a Wild West of open source competitors taking away market share and that governments and states will not get involved via lawsuits and legislation to affect Microsoft negatively .

    You screw around with DNS too hard and you will find that people will fight back. Of course their warnings about fragmentation will most likely be true very quickly. How much of an excuse does China need to form its own root servers and DNS? It would certainly only help them to create and control DNS resolution and to ban all DNS queries to outside networks period. The EU will probably form its own, and interestingly, will probably pick up well over half the US market.

    Seriously? Would you choose a DNS "network" that bypasses due process and exposes you to impossible business risks for you and your customers, or a DNS "network" operated without such risks?

    When installing IE9 now I can see options on changing default search engines. You can choose default programs now too. Did you think you would see that 5 years ago?

    I am willing to bet that if it gets bad enough, even router manufacturers will start giving choices and that open source browsers themselves will start making it easy to configure a computer to use alternate DNS servers, even if it is just for the browser itself.

    So far, they have not affected enough people yet, not all that many in actuality, but how much are we arguing about it right now? All they have done is stare at the hornets nest, just wait till they actually throw a rock.

  23. Re:Wrong, there are laws, and this breaks one of t by KahabutDieDrake · · Score: 4, Insightful

    Typical users lack the expertise, because up until now, they didn't need it. I assure you, they will gain this expertise rather shockingly fast. The only way to motivate "typical [l]users" to learn something new is to block something they want. Years ago typical users didn't know how to download HTTP warez, because they didn't understand ZIP files. Years ago typical users didn't know how to access Napster/Kazaa/whatever. Years ago typical users didn't know what a Bit Torrent client was, or why they needed one. Users learn what they need to in order to get what they want.

  24. Re:Wrong, there are laws, and this breaks one of t by MadMaverick9 · · Score: 3, Informative
    Have you actually tried this, you insensitive clod?

    wget -O /dev/null "http://216.34.181.45/"
    --2011-07-18 17:39:41-- http://216.34.181.45/
    Connecting to 216.34.181.45:80... connected.
    HTTP request sent, awaiting response... 301 Moved Permanently
    Location: http://slashdot.org/ [following]
    --2011-07-18 17:39:42-- http://slashdot.org/
    Resolving slashdot.org (slashdot.org)...

    this ip address simply re-directs to "slashdot.org".

    so this does not solve the problem.