[dns-wg] New on RIPE Labs: Is Your ISP Hijacking Your DNS Traffic?

Am 06.07.2016 um 15:26 schrieb Jim Reid:
>> Yes, I would blame my ISP for that. That's something I wouldn't expect as a customer 
> 
> Better check the small print of your contract with the ISP. Unless you’re living in a banana republic, your ISP will very likely be complying with laws that prevent access to illegal content. That generally means deploying things like DPI and policy-based DNS rewriting. Whether or not ISPs deserve to be blamed for that is another matter.

"Do not do illegal stuff with your internet connection" and "We will hijack your DNS requests (and maybe other services, too) just to make sure you don't do illegal stuff" are two completely different things.
Of course, the contract with my ISP (in my case Deutsche Telekom) contains paragraphs that make me fully liable to anything I do with my internet connection, including
illegal file sharing, hacking attacks or whatever. But they won't finger in my data traffic.
The worst thing that can happen to you is that they block port 25/TCP on your connection if you're sending SPAM.

And on the other hand: As soon as the ISP proves that he is capable of transparently manipulating my internet traffic, this would lead to the big question: 
Could I ever be liable for anything I've allegedly done on my internet connection? Or was it done by my ISP who manipulated my traffic?
That'd be an interesting question if you are in front of a judge...

And as Sander Steffann pointed out: Privacy laws are prohibiting this kind of data analysis and manipulation in many european countries.



Greetings
 Max

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 819 bytes
Desc: OpenPGP digital signature
URL: <https://lists.ripe.net/ripe/mail/archives/dns-wg/attachments/20160706/b16df40f/attachment.sig>