On Tue, Sep 27, 2011 at 7:50 AM, Jimmy Hess <mysidia@gmail.com> wrote:
On Tue, Sep 27, 2011 at 3:57 AM, William Allen Simpson <william.allen.simpson@gmail.com> wrote: [snip]
Certainly, hijacking google.com NS records to JOMAX.NET would be a criminal interference. After all, that's all DNSsec signed now, isn't it?
I would rather see DNSSEC and TLS/HTTPS get implemented end to end.
how does tls/https help here? if you get sent to the 'wrong host' whether or not it does https/tls is irrelevant, no? (save the case of chrome and domain pinning)
The solution is to spread their name as widely as possible, so consumers can make an informed choice if they wish to avoid service providers that engage in abusive practices, and bring it attention to regulators if the service providers are acting as an abusive monopoly in regards to their interception practices.
sadly, not everyone has a choice in providers :(