Ask HN: How would you make a site resistant to government takedown?

TLD: .is (pricey, but not expensive). Registration at inwx (seems competent, nice interface). DNS at either inwx or ______ (I haven't been able to find an EEA/Switzerland DNS provider). Hosting at OVH (cheap, IP failover, often used for torrents) or Leaseweb (used by some torrent sites, not quite as cheap as OVH).

This assumes that your content is only somewhat controversial. For worse: TLD .is, Hosting at PRQ (hosts NAMBLA, AnonTalk, …), no idea which registrar I'd use.

If people are actively trying to kill you because of what you want to publish, your only options are PRQ or NearlyFreeSpeech. Both can be fully anonymous, i.e. they will host your content without knowing who you are. Payment would be somewhat hard (I wonder whether they would accept mailed-in, sterile bills (though these could be traced)).

The easiest way is to not make a "site" but a collection of files which can be distributed by others. You could possibly include offline-executable content, or if you must have it be online (some kind of transactional thing), make it easy to set up mirrors, especially for people to set up mirrors without your cooperation or awareness.

The hierarchy of resilience:

It's trivial to censor an (average wealth, average risk tolerance) individual -- just harass and prosecute for unrelated things. Everyone is a criminal, once you have enough laws...

It is fairly easy to censor a commercial organization (just cut off their payments and banking...)

It's harder to censor a free site (it can do what everyone is suggesting here; hosting offshore, non-US domain name, etc.)

It is much harder to censor something which can be readily mirrored by others.

It is very hard to censor distribution of a dataset. Even harder if the dataset is very small (sony keys, dvd-css, etc.)

It's almost impossible to censor an idea.

TorrentFreak had some recommendations a couple months ago: http://torrentfreak.com/how-to-stop-domain-names-being-seize...

Build it on i2p: http://www.i2p2.de/

I'm a huge fan of (and advocate for) i2p. As cases like today's FBI seizure of domain names continues to spread, I think i2p will gain even more traction as a viable alternative to the "old" internet.

It is multipath, encrypted, and completely decentralized.

All it needs now is a "killer site".

Which TLD? All of them. Or at least several TLDs and registrars that all have different legal jurisdictions. (online-hunting.ly, online-hunting.ch, online-hunting.cn)

Where would I host it? Everywhere. Or at least in multiple physical locations in different countries that all have different legal jurisdictions. Either synchronized up or sharded out depending on how the app works.

I mentioned this in the Poker thread. (If I had time right now, I'd consider implementing it.) I would like and would use a DNS service that 1) did not keep any record of my queries and 2) would not propagate government takedowns (e.g. by ignoring updates with NS:ns2.cirfu.net.

It wouldn't really be part of the WWW proper, but you could run a web server as a TOR hidden service which would (assuming TOR doesn't disappear) be totally anonymous and impossible to take down.

http://en.wikipedia.org/wiki/Tor_(anonymity_network)#Hidden_...

Obviously .ch which is Switzerland and Switch.ch as the register. They are the original neutral nation.

This seems to be the only way:

http://dot-p2p.org/index.php?title=Draft_Discussion_Paper

https://github.com/HarryR/ffff-dnsp2p

For the very hardcore/paranoid, you could serve it through TOR as a hidden service. You get DoS protection, server and client anonymity, you don't even need to disclose your IP address. Of course, you can only connect to it through TOR.

http://en.wikipedia.org/wiki/Tor_(anonymity_network)#Hidden_...

Convince someone with diplomatic immunity or a member of parliament or other government entity. It will become an international battle of words and strong-arm diplomacy, but one country's government is quite unlikely to shut down another's. (Well, except perhaps the US.)

But truth be told, I don't think you can safeguard data on just one site. There's (D)DoS, ip routing, domain registration system, physically cutting backbones, etc. I'm sure no registrar wants to risk losing 50% of their customers ("50% of the world", assuming even spread), especially everyone in the US market, so as a profit-based organisation they will have to give in to threats of litigation or plain IP null-routing.

Mass distribution seems the way to go then. P2P or just lots of willing people putting the content on their own websites. Once it's out there, I guess it's nearly impossible to get Jack back in the box.

Keep spare domains around and keep mirrors of your content. Make sure to keep a static copy around as it can be a pain in the ass to setup a database server and other apps quickly. Toss the mirror on BitTorrent and get friends, family, strangers to download it and host it. Host it on free website hosts. Host it on Freenet!

Take over forums, pastebins, and other websites to keep the message alive.

Basically, you'll want to have as many avenues as possible in order to send the content across them. As soon as one domain goes down, a bunch of mirrors should pop up.

A site takedown starts with a request from some government agency, so the first thing that come to mind is to host it in a place where every request will need to go through a tick barrier of language issues/misunderstanding/bureaucracy. But considering that you'll also need a good network infrastructure there aren't many places that meet these requirements. What about China?

Iceland is trying to attract this kind of clients.

This idea is something that's been really interesting me a lot since the US Govt started doing this and since all of the craziness with the internet in the middle east.

The Pirate Bay is working on a "P2P DNS" network: http://arstechnica.com/tech-policy/news/2010/11/fed-up-with-...

Unhosted is a project that seems to be trying create a decentralized cloud: http://www.unhosted.org/manifesto.html

and what was mentioned before, i2p and tor.

This is all very interesting to me. It's like authority structures of all different kinds are putting their thumb down right in the middle of the web trying to crush it's autonomy. The inevitable backlash will lead to the fragmentation of the web in just as fundamental a way as the walled gardens that cell phone/tablet/game console companies create.

I don't think it's possible. Instead try a social engineering approach where you have enough broad-based support for the concept that there is pressure on the government not to shut it down.

Wikileaks has been very smart lately in the way that it has expanded its own PR reach before delving back into controversial material.

How badly does the USG want your hostname? They control the root zone. And all but three of the organizations that run root servers are based out of the US.

Therefore, if the USG were motivated to block your hostname-- regardless of TLD-- they could make a fairly good go at it.

Interesting. Does anybody here have experience with PRQ or easyDNS, two sites that are often mentioned in connection Wikileaks et. al.?

This is a great question, thanks for asking it!

It depends on whether you're looking to get it in front of lots of eyes or whether you're more concerned about it not being taken down.

For the former, I'd use a .is domain (Iceland) and host it with OVH or Nearly Free Speech.

For the latter I'd host it on Tor as a set of static files, available via a torrent for mirroring, and would encourage mirroring in the name of free speech.

"All rulers in all ages have tried to impose a false view of the world upon their followers." - George Orwell

Instead of trying to outfox your own government, which is something you cannot do, turn your attention to peacefully and openly advocating for whatever it is you want to say. If that doesn't work, or you can't do so, move.

I know that this is a life-threatening proposition in totalitarian states (the Berlin Wall was designed to keep East Germans in), but I don't think that life under dictatorship is very much of a life anyway.