| ▲ | charcircuit 17 hours ago | ||||||||||||||||
>There's no such thing as a TLD that's uncontrollable by any entity. Think .crypto but without the ability to upgrade the smart contract to censor domains. The registry is spread out across a whole decentralized network of computers of which has another decentralized network of computers that proxy requests exists. >how does it stand up to me editing the hosts file, or the browser's source code? No one can force you to resolve domains YOU don't want to. You can of course blow up your computer and then you definitely can't resolve the domain. What people mean is that the user is free to still resolve it if they want. | |||||||||||||||||
| ▲ | deathanatos 15 hours ago | parent | next [-] | ||||||||||||||||
> The registry is spread out across a whole decentralized network of computers of which has another decentralized network of computers that proxy requests exists. Ultimately, someone has to be in control of who is or is not part of that decentralized network that is the registry. (Or, alternatively phrased, how are you preventing me from saying "I'm part of the .crypto registry, totes.") Aside from that, the root nameservers is still an entity that is controlled (by ICANN, specifically). | |||||||||||||||||
| |||||||||||||||||
| ▲ | wizzwizz4 5 hours ago | parent | prev [-] | ||||||||||||||||
What does "the user is free to still resolve it if they want" mean in a world where people do not control, or even understand, the software running on their computers? (Because I can tell you, I certainly don't.) This abstraction is a nice idea, but it's unrealistic as part of a serious threat model. Does Joe Q. Public know about the hosts file, or how the Windows network stack selectively overrides its entries, or how some of the Linux userspace uses systemd-resolved, or the things that I don't even know to write here? I'M not the one resolving domains: the software running on MY computer is. And even if I'm a super genius who's written my own full-stack operating system on my souped-up speccy, I'm still bound by the laws of information theory. If you need information that you don't have, you're necessarily requesting it from a source (here, a computer) external to you (here, outside your control). A complicated network protocol doesn't make that fact go away, and doesn't allow you to ignore it. (It might mitigate various censorship or spoofing approaches, but you only know that if you check: the abstraction won't save you merely by virtue of being an abstraction.) | |||||||||||||||||