Law 89417-6: Get a public base of illegal content?
I want to share my thoughts about the law 89417-6 on the possible filtering and blocking of “bad sites”.
As we know, the law involves filtering IP addresses, not website addresses, as has already been done when blocking extremist resources (the list of which, by the way, is public ).
As a result, somewhere in a certain non-profit company there will be a base of IP addresses, behind which are resources with child porn, drug propaganda and suicide methods. At least, this method of filtering in the views of our legislators.
')
Probably, it is not necessary to explain why it is foolish to make this base public, as was done with extremist resources. It is also obvious that the IP address of the server on VKontakte or Wikipedia will not get there exactly, since closing these resources even for a couple of days will trigger a micro-revolution among the masses, and nobody needs that.
If suddenly everything goes the way the lawmakers represent, the bulk of this database will contain addresses of Western servers with similar content. Just because the owners of these servers and / or hosters are more likely to get rid of the indicated pages, and they, of course, will not sue about excluding the IP address. Some part will just change the IP address to the next one. It is practically free. But those to whom the Russian market suddenly did not give up, may simply not notice a blockage. At least the first time.
There are interesting consequences.
This “closed” database of all blocked IP addresses can be quite simple to get to any curious IT pros.
Recall that the total number of IP addresses in the world is limited to just over 4 billion. In order to understand whether the IP address is on the “black list”, you need to try to access it via the HTTP port (80) from Russia and from outside of it. If Russia is not allowed, and outside everything is ok, then IP is likely to be blacklisted. Let it take no more than 10 seconds to figure this out - as a rule, during this time the server should already give some kind of answer. At the same time, at least 1000 parallel requests can be opened from a single polling server. As a result, we get the time to poll all aypishnikov - 4 billion / 1000 * 10 seconds / 60/60/24 = 1.5 years from one server. If this is done from a dozen servers, from Russia and from the West, we will receive the entire database in a month and a half. In fact, everything can fit in a week or two, since in the overwhelming majority the answer will be much faster than in 10 seconds, a substantial part of the range of IP addresses should not be scanned at all, etc.
Conclusion: the base of IP addresses of prohibited resources will become public. With the use of Reverse DNS services, you can find the site addresses themselves. Since, as I already wrote, there are unlikely to get IP addresses of large hosters or projects like Vkontakte / Wikipedia, reverse DNS will give quite targeted domains. Something tells me that in this way the law simplifies the search for prohibited information. An interesting law comes out - before it there was no public catalog of child porn, drug addiction propaganda and suicide methods, and then it becomes available.
As we know, the law involves filtering IP addresses, not website addresses, as has already been done when blocking extremist resources (the list of which, by the way, is public ).
As a result, somewhere in a certain non-profit company there will be a base of IP addresses, behind which are resources with child porn, drug propaganda and suicide methods. At least, this method of filtering in the views of our legislators.
')
Probably, it is not necessary to explain why it is foolish to make this base public, as was done with extremist resources. It is also obvious that the IP address of the server on VKontakte or Wikipedia will not get there exactly, since closing these resources even for a couple of days will trigger a micro-revolution among the masses, and nobody needs that.
If suddenly everything goes the way the lawmakers represent, the bulk of this database will contain addresses of Western servers with similar content. Just because the owners of these servers and / or hosters are more likely to get rid of the indicated pages, and they, of course, will not sue about excluding the IP address. Some part will just change the IP address to the next one. It is practically free. But those to whom the Russian market suddenly did not give up, may simply not notice a blockage. At least the first time.
There are interesting consequences.
This “closed” database of all blocked IP addresses can be quite simple to get to any curious IT pros.
Recall that the total number of IP addresses in the world is limited to just over 4 billion. In order to understand whether the IP address is on the “black list”, you need to try to access it via the HTTP port (80) from Russia and from outside of it. If Russia is not allowed, and outside everything is ok, then IP is likely to be blacklisted. Let it take no more than 10 seconds to figure this out - as a rule, during this time the server should already give some kind of answer. At the same time, at least 1000 parallel requests can be opened from a single polling server. As a result, we get the time to poll all aypishnikov - 4 billion / 1000 * 10 seconds / 60/60/24 = 1.5 years from one server. If this is done from a dozen servers, from Russia and from the West, we will receive the entire database in a month and a half. In fact, everything can fit in a week or two, since in the overwhelming majority the answer will be much faster than in 10 seconds, a substantial part of the range of IP addresses should not be scanned at all, etc.
Conclusion: the base of IP addresses of prohibited resources will become public. With the use of Reverse DNS services, you can find the site addresses themselves. Since, as I already wrote, there are unlikely to get IP addresses of large hosters or projects like Vkontakte / Wikipedia, reverse DNS will give quite targeted domains. Something tells me that in this way the law simplifies the search for prohibited information. An interesting law comes out - before it there was no public catalog of child porn, drug addiction propaganda and suicide methods, and then it becomes available.
Source: https://habr.com/ru/post/147644/
All Articles