Re: Filtering "Illegal" Video

Thu, 20 Feb 2025 12:58:01 -0800 


On 2/20/25 13:44, Christopher Morrow wrote:

On Thu, Feb 20, 2025 at 1:21 PM Kevin McCormick <kmccorm...@mdtc.net> wrote:

Might want to look at Audible Magic.

https://www.audiblemagic.com/

They do identification and filtering of copyrighted content.

University I worked at had a box that would identify students pirating content 
and would then black hole their IP addresses.

Assuming that this isn't 'bittorrent' sorts of things where (aside
from encrypted dht? I dont' know bittorrent, sorry) the traffic
is probably encrypted/tls ... how would any of this realistically work?

   1) install a CA on your client's machines - HAHAHAHAH no.
   2) force-break the TLS inspect and send along - HAHAHAAHA also no.
   3) by identifying already known 'bad sources' and classifying based on that?

there are potentially a world of 'legit' streaming service endpoints,
it seems like this sort of order (and work) is
prone to huge failures in actually accomplishing the mission.


Helped the University avoid receiving and processing DMCA notices.

Thank you,

Kevin McCormick

-----Original Message-----
From: NANOG <nanog-bounces+kmccormick=mdtc....@nanog.org> On Behalf Of Mike 
Hammett
Sent: Monday, February 10, 2025 2:58 PM
To: NANOG <nanog@nanog.org>
Subject: Filtering "Illegal" Video

CAUTION: This email originated from outside your organization. Exercise caution 
when opening attachments or clicking links, especially from unknown senders.

I've never paid much attention to the abilities to filter traffic because I 
didn't care what my customers were doing until which time a lawful order told 
me to care.

Someone recently asked me that since there was only one legal way in a particular country to 
consume television service over IP, was there any way to block the "illegal" streams. I 
put "illegal" in quotes because some of it really is the pirated crap, but some is likely 
just watching Netflix, Prime, Hulu, etc. over a VPN.

With the tooling I have, no, I can't block that stuff. Well, at least not with 
any precision. I'd certainly miss a bunch and there would be a bunch of 
collateral damage. However, I also know that I'm not using overly sophisticated 
tooling or methods to achieve this.

Are there platforms out there that can accomplish this with any precision?

No, I don't know what constitutes "TV" in that jurisdiction, nor do I ask this group to weigh in on 
that. Are YouTube, Vimeo, and Rumble "TV"? Are Netflix and Prime "TV"?



Court orders received by network operators in countries where this is 
done frequently are typicallly either of the form:


* block this ip address, prefix or address/prefix set


* configure your recursive resolver to not resolve queries for the 
specified domain name or zone.



They can be more involved or assume the use of specialized equipment if 
implemented with coordination of the operator. e.g. port 443 handshakes 
with the following sni, but generally are not.





-----
Mike Hammett
Intelligent Computing Solutions
http://www.ics-il.com

Midwest-IX
http://www.midwest-ix.com
























					Reply via email to