Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?

To: debian-devel@lists.debian.org
Subject: Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
From: Simon Richter <sjr@debian.org>
Date: Fri, 13 Sep 2019 13:05:16 +0200
Message-id: <[🔎] 20190913110516.GA5872@psi5.com>
In-reply-to: <[🔎] 20190913102823.GB23990@bongo.bofh.it>
References: <[🔎] EE779388-626F-4853-BC0B-AD79B18F0731@sury.org> <[🔎] 20190908211713.GA30275@bongo.bofh.it> <[🔎] 20190908223803.GB11482@angband.pl> <[🔎] 20190910174657.GA30797@bongo.bofh.it> <[🔎] 20190912165247.GA10547@angband.pl> <[🔎] 20190912202739.GF2670@psi5.com> <[🔎] 20190912225130.kw7hu66vs73phkux@yuggoth.org> <[🔎] 20190913102823.GB23990@bongo.bofh.it>

Hi,

On Fri, Sep 13, 2019 at 12:28:23PM +0200, Marco d'Itri wrote:

> > Note that by way of counterargument, Google and its services have
> > been blocked in mainland China by the Great Firewall for nearly a
> > decade now, so I question whether there is really such a thing as
> > "too big to block."

> This is a false dichotomy: not all nation states are willing to go to 
> the extreme lengths as China.

Also, China cannot block Github, because they have no equivalent, and even
if they did, it wouldn't have the same content. Google is too easily
replicated, because they have no immediate contributors.

I expect that China will set up a proxy service with clones of all relevant
Github repositories soon to keep read-only access to free software around
but inhibit organizing through shared documents.

CloudFlare has too many services behind them that are important for the
economy and not replicable, so they are in a better position than Github
here.

> Also, this is a cat and mouse game and DoH is probably just the next 
> step :encrypted SNI will probably be needed as well later.

Mandatory Encrypted SNI with no fallback option -- everything else can be
circumvented easily.

This is a game that we should not play, really. It raises the cost of
running a service on the Internet so only big players can afford to do so.

We are throwing some ice cubes into the boiling pot so there are local
zones that are warming up slow enough that the frogs there do not notice.
This is a losing strategy.

   Simon

Reply to:

Follow-Ups:
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Evilham <contact@evilham.com>
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Shengjing Zhu <zhsj@debian.org>
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Anthony DeRobertis <anthony@derobert.net>

References:
- Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Ondřej Surý <ondrej@sury.org>
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Marco d'Itri <md@Linux.IT>
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Adam Borowski <kilobyte@angband.pl>
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Marco d'Itri <md@Linux.IT>
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Adam Borowski <kilobyte@angband.pl>
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Simon Richter <sjr@debian.org>
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Jeremy Stanley <fungi@yuggoth.org>
- Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
  - From: Marco d'Itri <md@Linux.IT>

Prev by Date: Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
Next by Date: Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
Previous by thread: Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
Next by thread: Re: Mozilla Firefox DoH to CloudFlare by default (for US users)?
Index(es):
- Date
- Thread