Last week's SOPA hearings were punctuated by facepalming moments in which learned members of the House Judiciary Committee dismissed the distinguished engineers who say the bill weakens Internet security. They said things like, "I'm no nerd, but I just don't believe it."
Well, you don't have to be a "nerd" to understand a) what DNSSEC is; b) why we desperately need it (or something like it) before the Internet collapses along with the creaking public key infrastructure; and c) how the insanity in SOPA will tank that effort. Stewart Baker at the Volokh Conspiracy lays it out in small, easy-to-understand words.
Unfortunately, the things a browser does to bypass a criminal site will also defeat SOPA’s scheme for blocking pirate sites. SOPA envisions the AG telling ISPs to block the address of www.piracy.com. So the browsers get no information about www.piracy.com from the ISP’s DNS server. Faced with silence from that server, the browser will go into fraud-prevention mode, casting about to find another DNS server that can give it the address. Eventually, it will find a server in, say, Canada. Free from the Attorney’ General’s jurisdiction, the server will provide a signed address for piracy.com, and the browser will take its user to the authenticated site.
That’s what the browser should do if it’s dealing with a hijacked DNS server. But browser code can’t tell the Attorney General from a hijacker, so it will end up treating them both the same. And from the AG’s point of view, the browser’s efforts to find an authoritative DNS server will look like a deliberate effort to evade his blocking order.
The latest version of SOPA will feed that view. It allows the AG to sue “any entity that knowingly and willfully provides …a product … designed by such entity or by another in concert with such entity for the circumvention or bypassing of” the AG’s blocking orders.
(via Interesting People)
As Oracle desperately tries to reanimate its wretched, failed attempt to destroy everything Sun Microsystems stood for and end computer science as we know it, there’s never been a better time to rock one of these “You Wouldn’t Reimplement an API” tees, which were an underground hit during the earlier trial.
Kyohazard’s Lament Configuration is a terrific piece of fan-art for those of us who loved the Hellraiser movies (the good ones, at least).
This is a pretty amazing vacancy: “You will lead Consumer Reports in our effort to realize a market where consumer safety is protected through strong encryption; consumers’ rights to test, repair, and modify their devices are supported by copyright, security, and consumer protection laws; and consumers are empowered to make informed choices about IoT products […]
While Netflix and Hulu have seemingly dominated the streaming market with their limited selections, we’ve looked a little outside the box and found something pretty great as an alternative. SelectTV combines all the content of cable with the convenience of streaming, and it’s affordable too.SelectTV is an online subscription service that packs an impressive library of over […]
These days, the vape market is saturated with low-quality products, making it nearly impossible to separate the gems from the duds. The Atmos Rx Dry Herb Vaporizer stands out from crowd for two reasons: its impressive battery life and durable construction. This high-end little gadget is compact enough to fit in your pocket, and packs a powerful punch, […]
If you’re like us, you occasionally get ambitious with your dinner and try to cook multiple sides plus a main dish. These efforts usually end as a cold meal plus a pile of dishes to wash. MasterPan Multi-Sectional Meal Skillet makes it super easy to make multiple dishes at once without the hassle. This heavy gauge bottom pan […]