Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

Is this something site owners themselves can set up, or does it require that users use a special client or special DNS config? If you have any links, I'm sure a lot of people reading this thread would really appreciate it.


The CDN (Cloudflare etc) is something the sites set up. Encryption of DNS happens on the users’ side, but I believe it’s something browsers are starting to enable by default.


sorry for the late follow up.

the idea is your connection to an unwanted site has to be singled out before it can be throttled.

AFAIK website connections can be singled out by:

- unique server IP (countered by sharing server IP with many -> CDN)

- Server Name Indicator (countered by encrypted SNI)

- DNS (countered by encrypted DNS, eg. DNS over HTTPS)

They'd have to throttle the whole CDN.

eSNI and DNSoverHTTPS are on their way to be included in every major browser.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: