top | item 38143078

(no title)

jimaek | 2 years ago

Is there a service like this that could work on a DNS level?

I'm using a DNS ad blocker and I could set-up overrides of certain news websites to a different hostname which in turn would redirect to the bypass URL.

It sounds doable but I haven't seen anything like that

discuss

8chanAnon|2 years ago

That would need to involve more than the DNS. The browser expects to see the certificate for a specific website so you can't just redirect. The certificate needs to be forged. I don't think that is doable without a personal proxy server. In some cases, the browser may allow you to accept an invalid certificate but many sites forbid that via the HTTP Strict Transport Security mechanism. So you will need a proxy server plus a self-signed certificate authority installed in the browser or operating system.

Nextgrid|2 years ago

A service could work but would need to work around TLS. It would either need to provide you a root CA certificate to install on your systems (bad idea as it would allow them to MITM any website), or a bundle of certificates for the hostnames of the news websites they support (so the MITM is constrained to those domains, but that's fine as that's your intention anyway).

8chanAnon|2 years ago

A responsible developer should never supply a pre-configured certificate (though many do exactly that). An unique certificate should be created for the specific installation.