Follow Slashdot blog updates by subscribing to our blog RSS feed

 



Forgot your password?
typodupeerror
×
Piracy The Internet IT

French Govt Wants To Inject Domain Blocking Lists Directly Into Web Browsers (torrentfreak.com) 82

Online piracy, now being linked with malware, identity theft, and banking fraud, has prompted a coordinated concerning campaign for tougher legislation beyond copyright laws. The French government, news website TorrentFreak reports, is considering an ambitious approach: integrating state-operated domain blacklists into web browsers. This step is well-intentioned, indicating an evolving strategy in battling piracy.
This discussion has been archived. No new comments can be posted.

French Govt Wants To Inject Domain Blocking Lists Directly Into Web Browsers

Comments Filter:
    • If you have the list in your browser then it will be almost impossible to prevent users from disabling the blocks, unlike one that is implemented by your ISP. However, this almost certainly means that it is doomed to fail.
      • by Anonymous Cward ( 10374574 ) on Friday June 30, 2023 @03:12PM (#63647070)
        Edge, Chrome, Firefox and Safari all make it quite easy to prevent such lists being downloaded, either by tampering with file system permissions or blocking access to the remote servers hosting the lists. Since browsers need to work in intranet scenarios and since there would be no implementation details in the legislation, this would be a nice way to do away with ISP-level blocking, while guaranteeing uncensored access for nerds like us!
      • by noodler ( 724788 )

        What kind of userland nerd are you?
        If it's depending on software you have control over it is many times easier to circumvent than anything they can do to the internet infrastructure.
        In the very worst case you can hack and compile a special version of an open source browser that disables this feature.

  • "The road to Hell is paved with good intentions."

    • by dddux ( 3656447 )

      Also, if you give them a pinky, they can take the whole hand afterwards. This is just NO. Although, I'm using Linux and Firefox for it, I have no doubt I would be able to get a "clean" alternative for it. Thinking about it, everyone would be able to install a "clean" version eventually, I have no doubts.

      • Until they made using your own version a felony.

        • by dddux ( 3656447 )

          Oh yes. It wouldn't be the first time the government criminalising a piece of software. We all know how it goes in the end. ;) The only thing criminal here is their knowledge of computers and computer technologies. :)

        • Re: (Score:3, Insightful)

          by narcc ( 412956 )

          The big bad government isn't going to make using your own web browser a felony, champ. That's insane. This is nothing more than the same kind of misguided technical legislation we've seen countless times before. It will disappear once the people backing it realize that it was an incredibly stupid idea. Just like we've seen countless times before.

          You anti-government nuts never cease to amaze me. You believe the government can do nothing right, yet believe that they are somehow capable of running a massi

          • by CodeInspired ( 896780 ) on Friday June 30, 2023 @02:41PM (#63646954)

            The big bad government isn't going to make using your own web browser a felony, champ. That's insane. This is nothing more than the same kind of misguided technical legislation we've seen countless times before. It will disappear once the people backing it realize that it was an incredibly stupid idea. Just like we've seen countless times before.

            I love the "government would never do that!" folks. They are to be trusted. They are here to help you. Edward Snowden was a traitor and a criminal. Government would never spy on you like that.

            • by narcc ( 412956 )

              How many of your silly evil government predictions have come to pass? LOL! I know, any day now. Keep fucking that chicken...

              • Re: (Score:1, Interesting)

                The government would never do something like, say, a false flag or assassinate American citizens without trial or crush whistle blowers or ship cocaine into our ghettoes or have a two tiered Justice system or ... you live under what rock?

                Any American who has been alive for long enough to learn to walk has learned the government sees us as chattel not themselves as public servants. There's no conspiracy. You don't have to go to obscure websites to see it.

                It's right there in our faces every god damned day.

                • by narcc ( 412956 )

                  Why am I not surprised that you suffer from paranoid delusions?

                  • You are simply ignorant. Every single one of those things has happened. If you're an American then it was your government that did all those things. And a lot more. Absolutely none of it is disputable. Those are historic facts. But according to you somehow the government is magically nice now and doesn't do anything bad anymore.

                    There is no accounting for ignorance or stupidity.

                    • by narcc ( 412956 )

                      There's a reason you speak in vague generalities. It's because you have nothing but paranoid delusions. Seek help.

            • >"I love the "government would never do that!" folks. They are to be trusted. They are here to help you. "

              Probably the same people who think "if I am doing nothing wrong, I have nothing to hide"

    • by alvinrod ( 889928 ) on Friday June 30, 2023 @12:26PM (#63646664)
      I don't even think this is well intentioned. This is just a plausible excuse to try to curtail freedom with the hope that the public won't notice.
    • by gweihir ( 88907 )

      It is certainly the road to hell, but I am more and more doubting the good intentions.

  • Heh. (Score:4, Insightful)

    by waspleg ( 316038 ) on Friday June 30, 2023 @11:46AM (#63646542) Journal

    This step is well-intentioned.

    Only if you consider corporate interests well-intentioned. Also, how do they propose to enforce that?

    • Re:Heh. (Score:5, Interesting)

      by taustin ( 171655 ) on Friday June 30, 2023 @12:01PM (#63646584) Homepage Journal

      This step is well-intentioned.

      Only if you consider corporate interests well-intentioned.

      Corporate interests, hell. Once this is in place, anything that is politically inconvenient to the people in charge becomes piracy (or they'll stop pretending and add "terrorism" to the list of things blocked by it, and they are, indeed, terrified of any form of dissent).

      Also, how do they propose to enforce that?

      Same way they enforce everything else: fine the software companies that create browsers until they comply or leave the EU (at considerable cost in revenue) and get their domains completely blocked by the Great Wall of France.

      They're taking lessons on totalitarianism from China, and soon, they'll be teaching the teacher.

      • Most modern states operate under some form of rule of law as their ultimate authority - I don't think having free speech just baldly declared piracy is likely, or even possible in any functioning democracy.

      • (or they'll stop pretending and add "terrorism" to the list of things blocked by it,

        Terrorism is specifically defined in law, for France they are defined at L421-1 CP https://www.legifrance.gouv.fr... [legifrance.gouv.fr] . It necessarily has to be either of: murder, destruction, damage caused by hacking a computer system, manufacture of explosives, certain kinds of wire fraud; but in all cases it must include a premise that is "to be intentionally linked to an enterprise to cause serious trouble to the public order by causing intimidation and fear". There were multiple cases where a Muslim person takes a knif

        • ....damage caused by hacking a computer system....

          It would be trivially easy to shovel "evading domain restrictions" into that clause if someone does something to disable the domain blocking integrated into a browser. That particular definition of terrorism is so broad that any activity that involves a computer anywhere within a trillion light years of anything can fit it.

          • It would be trivially easy

            France has known a large number of acts that the justice system characterized as terrorist https://en.wikipedia.org/wiki/... [wikipedia.org] . Among the hundred of cases, can you provide an example of France exaggerating in the application of this definition, or evidence of a trend where France slowly slides into exaggeration?

            "Attempted murder" is also broadly defined, and according to a similar argument, law enforcement could send anyone for life in jail for minor acts like a slap on the face. Reality check is that in the

        • by taustin ( 171655 )

          Terrorism is specifically defined in law

          Since we are - specifically - talking about changing the law, so what?

    • They'll screw you over every time. And you won't see it coming.
  • The first thing pirates will do is turn off the blacklist in their browser.

    • Sounds like they're trying to integrate it into the same blocklists that are used for malware and fraud.

      Piracy is a common vector for malware, I'll grant, but so are ads. Corporate interests will not allow them to even consider blocking ad networks.

  • To block any website talking with any positive light about the ongoing riots.
  • If one can make antivirus software that blocks things, ad blockers, and firewalling software that blocks attacks, then a government can force software that would scan for suspected piracy tools (could even be something like SoftICE), and block or redirect stuff that the state doesn't want you to see (could be IP violations one day, could be Le Pen's opponents the next, could be any sites debunking propaganda the third day). Add to this something like a NAC where the router or upstream checks signatures on

  • Impossible (Score:5, Insightful)

    by Mononymous ( 6156676 ) on Friday June 30, 2023 @12:08PM (#63646604)

    It says, "...the administrative authority notifies the electronic address of the service concerned to the providers of internet browsers..."
    The EU regulations do have a definition of "web browser", but no defintion of "provider" of a browser.
    Whom do they envision notifying, and how?

    • by gweihir ( 88907 )

      It is disconnected from reality anyways. Anybody can build a simple browser themselves these days, there are enough libraries out there for that.

    • by AmiMoJo ( 196126 )

      Google and Microsoft and Mozilla already have such mechanisms in place for malware sites, and by default enable them to protect users.

      That's generally a good thing, but the problem is that once the technology exists other people want access to it.

      This has happened before. BT developed a system called CleanFeed that was used to block child porn. Later private companies trying to stop people putting their IP used the courts to force BT to add their "bad" URLs to it.

      It's effectiveness has been greatly reduced

  • After the first few drone strikes hit malware guys homes the rest will find other jobs.

  • Make it the browser's problem so that when it doesn't work politicians have a nice scapegoat. They are trying to fix the completely wrong end of the problem.
  • Not only the French government wants to force browsers to have built-in ad blocking capabilities, they also intend to provide us an up to date list list of where we can download stuff for free.

    Ok, I know about signatures and hashes, and also, considering it is the French government, the list won't be up to date, and it won't be done anyways.

    As for blocking malware, all majors browsers do it, to varying degrees.

  • We! zeeseeng, yickanobeedunn. Oui, cette chose, cela ne peut pas Ãtre fait. Uh, non, mes amis.
  • This would be the most easily circumvented anti-piracy "feature" ever conceived.

  • Well-intentioned my ass. Fuck you.

  • ...all French government & intelligence websites, as I find those unsafe and delivering spam... right?

  • so repos will to have builds for each jurisdiction?

    also the apple app store will be forced to allow non apple webkit use if needed to pull this off?

    • by Anonymous Coward

      also the apple app store will be forced to allow non apple webkit use if needed to pull this off?

      No, that isn't how France works.

      They will have one law making it illegal for Apple to force apps to use webkit, because freedom.
      They will also have another law making it illegal for Apple to allow apps to use anything except webkit, because enforcement.
      Finally they will make a law that it is illegal for Apple to not provide services to France.

      Once every possible option is illegal they will start issuing fines for wealth extraction.

  • To block malware domains (Google SafeBrowsing, Firefox Phishing Protection). The reasoning of bureaucrats is along the lines "well, the feature is already there, might as well use it for whatever we consider malicious".

  • So are these State Operated Black Lists going to be automatically loaded into State Operated Browsers?

    Unless there's a country wide proxy with mandatory browser certificates to function, there is no chance this can work. Even with it, it just ups the bar a bit to bypass.

    Some legislators learned buzz words like domain and blacklist with no understandng of reality.
  • by gweihir ( 88907 ) on Friday June 30, 2023 @12:35PM (#63646688)

    At least that is my stance here. I am sure many will agree.

    Also, what the hell is "well intentioned" here?

  • Large companies with full control over their firewalls, internet lines and workstations already are in a constant battle to keep up with these types of actions, the idea of doing it on a national scale and at the browser level no less is not just technologically and culturally infeasible but speaks of assinine misunderstanding of how the internet works.

    China is doing it the actual "right way" in that they have control over the border devices in and out of the country and even they barely seem to have contro

  • by Opportunist ( 166417 ) on Friday June 30, 2023 @12:43PM (#63646706)

    I'll just use a different one, ok?

  • OK, Firefox and Chrome are probably browsers. Is curl? Or wget? How about if I hack something together in Perl using LWP? Will the LWP libraries need to include the blocklist? And a way to prevent me from disabling it?

    Typical out-of-touch politicians. If they really wanted to do this, they'd mandate state-controlled DNS servers and block DNS traffic except from those servers... I'm sure that's how their fellow authoritarians like China, Cuba, etc. do it.

    • Which would inevitably make encrypted DNS traffic incredibly popular.

      The only way to truly control the flow of information over the Internet is to block anything you can't inspect, which means zero encryption... and we're too dependent on that because bad actors will exploit systems that aren't protected.

      In a way, we should actually be thanking that hackers and thieves and corporate espionage specialists, because without them everything would run just fine without encryption, and governments could successfu

      • by dskoll ( 99328 )

        Or build up massive infrastructure like the Great Firewall of China. Doesn't block everything, but certainly blocks enough to tamp down on meaningful dissent.

  • And TPM. And why Windows 7 is "insecure". Defend your right to use "insecure" software and "insecure" boot, im serious, as AI censorbots will be baked in to Windows 12 and Flatpak'd Linux distros.
    • Microsoft definitely wants to have more control of your computer than you do. Arguably that's to save you from yourself; I don't know if that is a good thing or a bad thing. Microsoft UI design is based on the assumption that the user is stupid. Unfortunately, they are usually right about that assumption.
  • I'm a strong believer in letting authorities waste energy on futile efforts. Anyone can compile their own browser without the blacklist. This also just hastens the eventual breakaway community overlay networks.
  • I'm sure there are ways of working around it with redirects anyway.
  • The French government here wants to try to predict people. how about all you tech heads come up with some kind of way to actually do that?
  • by markdavis ( 642305 ) on Friday June 30, 2023 @05:58PM (#63647400)

    >"This step is well-intentioned"

    Oh what a statement. It can be applied to just about every insane, unfair, nasty, ineffective policy. It really doesn't matter all that much about the motivation or intention. What ACTUALLY matters is what happens when such a policy is enacted. Who loses freedom? What will it cost? What are the unintended side-effects? Who will control it? How long will it last? How is it overseen?

    Good intent in public policy doesn't excuse bad outcomes, especially when honest, good debate isn't exercised or opposing information is ignored, discarded, banned, whatever. I am sure some really fat lobbying is happening there.

    So in this case, the INTENT is good to: let the government bureaucrats, typically unelected, and sometimes corrupt, decide which sites we are all allowed to visit or not. And to somehow FORCE browser makers to comply with that. And to somehow FORCE users of open-source to not remove said restrictions. And to somehow keep it secure so it can't be manipulated or hijacked or used as a weapon or a denial of service. And enforce it how- by criminalizing behavior of software writers? Web browser users? "Distributors" of web browsers?

    It is truly frightening how much power we ALLOW politicians and bureaucrats, who are often complete tech idiots, to have over our lives.

  • What would stop someone from taking, say, Chromium and building it without any of this crap in there?

  • The article certainly does not say This step is well intentioned. Not sure how Slashdot has gone downhill like this â¦

    Quoting:

    It's a well-intentioned move but will not stop there.

      For responsible adults with decades of experience from which to draw their own conclusions, the idea that adults we have never met have the power to govern our online activities is a borderline insult.

Some people claim that the UNIX learning curve is steep, but at least you only have to climb it once.

Working...