On Tue, Sep 27, 2011 at 7:50 AM, Jimmy Hess <mysi...@gmail.com> wrote: > On Tue, Sep 27, 2011 at 3:57 AM, William Allen Simpson > <william.allen.simp...@gmail.com> wrote: > [snip] >> Certainly, hijacking google.com NS records to JOMAX.NET would be a >> criminal interference. After all, that's all DNSsec signed now, >> isn't it? > > I would rather see DNSSEC and TLS/HTTPS get implemented end to end.
how does tls/https help here? if you get sent to the 'wrong host' whether or not it does https/tls is irrelevant, no? (save the case of chrome and domain pinning) > The solution is to spread their name as widely as possible, so > consumers can make an informed > choice if they wish to avoid service providers that engage in abusive > practices, > and bring it attention to regulators if the service providers are > acting as an abusive monopoly in regards to their interception > practices. sadly, not everyone has a choice in providers :(