This isn't really relevant to MediaWiki, and the proposal is so ridiculous I can only assume it is some sort of joke project.
For others seeing this thread, I found all the good quotes for you: > DNSChain "stops the NSA" > .dns is a meta-TLD because unlike traditional TLDs, it is not meant to globally resolve to a specific IP [...] you cannot register a meta-TLD because you already own them! I think ICANN might take issue with that. (Also, a good read of RFC 3686 is necessary here.) > // hijack and record all HTTPS communications to this site > function do_TLS_MITM(connection) { > if ( > // let's not get caught by "pinning", shall we? > isPinnedSite(connection.website, connection.userAgent) > // never hijack those EFF nuisances, they're annoying > || isOnBlacklist(connection.ip) > // hijack only 5% of connections to avoid detection > || randomIntBetween(1, 100) > 5 > ) > { > return false; > } > return mitm_and_store_in_database(connection); > } I'd *love* to see the implementation of "mitm_and_store_in_database". Also, fun to note that the entire application is written in CoffeeScript. *-- * *Tyler Romeo* Stevens Institute of Technology, Class of 2016 Major in Computer Science On Wed, Apr 30, 2014 at 1:41 AM, James Salsman <jsals...@gmail.com> wrote: > Would someone please review this DNS proposal for secure HTTPS? > > https://github.com/okTurtles/dnschain > http://okturtles.com/other/dnschain_okturtles_overview.pdf > http://okturtles.com/ > > It is new but it appears to be the most correct secure DNS solution for > HTTPS security at present. Thank you. > > Best regards, > James Salsman > _______________________________________________ > Wikitech-l mailing list > Wikitech-l@lists.wikimedia.org > https://lists.wikimedia.org/mailman/listinfo/wikitech-l _______________________________________________ Wikitech-l mailing list Wikitech-l@lists.wikimedia.org https://lists.wikimedia.org/mailman/listinfo/wikitech-l