Malaysia's plan to block overseas DNS dies after a day, but still need to stay vigilant
submitted by https://lemmy.ml/u/umami_wasbi
There are reports in Registar’s comment section that Malaysia didn’t only redirect DNS traffic, but took active measures to block VPN, and MITM DoH where Cloudflare’s DoH returns local ISP certificate.
In fact, some ISPs like Maxis and Yes were already blocking VPN (I see a lot of complains on Lowyat.net about Maxis blocking VPN, and I was using Yes WiMax and experienced the blocking firsthand. I couldn’t connect to PPTP endpoints and L2TP endpoints caused the modem to disconnect from the network and reboot).
They were outright trying a MITM redirect attack on those using DOH. Many reported error messages saying that Cloudflare’s DOH server were practically returning the certificate for Telekom Malaysia’s DNS servers.
Even with many new technologies, I ralized that I not as safe and free as I want to be, maybe you too.
https://www.theregister.com/2024/09/10/malaysias_dns_blocking_plan_paused/
Lemmy.World - technology (RSS Feed) /
npub1d9…g5ady
2024-09-12 08:43:31
Author Public Key
npub1d924g4drlj8ylkunhkd4n0ujcy00sw6txv5fszqshdwmananmkjqag5adyPublished at
2024-09-12 08:43:31Event JSON
{
"id": "0a84defbdd31d2b31505655b2eafc5ff7380cb7589e60b5f2350446a9cf4d43d",
"pubkey": "69555455a3fc8e4fdb93bd9b59bf92c11ef83b4b3328980810bb5dbecfb3dda4",
"created_at": 1726130611,
"kind": 1,
"tags": [
[
"proxy",
"https://lemmy.world/feeds/c/technology.xml?sort=Hot#https%3A%2F%2Fwww.theregister.com%2F2024%2F09%2F10%2Fmalaysias_dns_blocking_plan_paused%2F",
"rss"
]
],
"content": "Malaysia's plan to block overseas DNS dies after a day, but still need to stay vigilant\n\nsubmitted by https://lemmy.ml/u/umami_wasbi\nThere are reports in Registar’s comment section that Malaysia didn’t only redirect DNS traffic, but took active measures to block VPN, and MITM DoH where Cloudflare’s DoH returns local ISP certificate.\n\nIn fact, some ISPs like Maxis and Yes were already blocking VPN (I see a lot of complains on Lowyat.net about Maxis blocking VPN, and I was using Yes WiMax and experienced the blocking firsthand. I couldn’t connect to PPTP endpoints and L2TP endpoints caused the modem to disconnect from the network and reboot).\n\n\nThey were outright trying a MITM redirect attack on those using DOH. Many reported error messages saying that Cloudflare’s DOH server were practically returning the certificate for Telekom Malaysia’s DNS servers.\n\nEven with many new technologies, I ralized that I not as safe and free as I want to be, maybe you too.\n\n\nhttps://www.theregister.com/2024/09/10/malaysias_dns_blocking_plan_paused/",
"sig": "0b0b1f5cac561819d15021e313a7cf361c7e92d5e06f3444822510f6f7b248784037df39e03f44c164edf2eac78906470f2b7786a97b659dc18dc3dcc3e71b1b"
}