It's actually a pretty smart and light way of protection the majority of users from malware. And yes, there will always be false positives.
And yes, it's sad we have to do this, but that's mostly because our industry, despite promising the contrary for years, doesn't seem to be able to offer secure services and products.
The fact is, that states are getting feed up with this and will start legislating because we keep making empty promises and tell them they are stupid.
You don't have to believe me, but maybe you listen to John Curran: https://www.youtube.com/watch?v=U1Ip39Qv-Zk
Sorry for the rant, but I feel your reply is condescending and uninformed. Just throwing around words like "internet police" etc doesn't solve anything.
Best Serge
On 23.04.24 08:38, Marc Balmer via swinog wrote:
Swisscom returns this IP address for blocked domain names most likely because it assumes this website is compromised (phishing, malware).
If you visit this IP address in a web browser you are redirected to https://www.swisscom.ch/abuse-info
That explains. From a technical point of view, that is one of the most stupid things one can possibly do. Whoever invented this, has no clue how the web works:
- I point my browser to https://spectrum-conference.org
https://spectrum-conference.org (or any other domain where swisscom acts as the internet police) 2) Swisscom tampers with DNS and returns the address of one of their own servers 3) My browser opens a connection to it *and of course the website's HTTPS certificate does not match* 4) My browser shows an error message that a secure connection can not be made (at least all Apple device do this) 5) Swisscom malware page is not even displayed.
This website has a form to report false positive.
Daniel
Thank you.
swinog mailing list -- swinog@lists.swinog.ch To unsubscribe send an email to swinog-leave@lists.swinog.ch