Today, I enabled quad9 dns for my home network, and archive.today now requires a captcha, which results in an infinite loop.

A similar problem was reported some months ago for Cloudflare’s 1.1.1.1

Posting here to see whether it’s just me or everyone. Is this a know problem?

  • @Spotlight7573
    link
    English
    111 months ago

    From my understanding, it’s not quite the closest server:

    https://news.ycombinator.com/item?id=36971650

    I talked to the maintainer of archive.is years ago, they said this (hopefully they won’t mind me posting):

    There have been numerous attacks where people upload illegal content (childporn or isis propaganda) and immediately reported to the authorities near the IP of the archive. It resulted in ceased servers and downtimes. I just have no time to react. So I developed sort of CDN, with the only difference: DNS server returns not the closest IP to the request origin but the closest IP abroad, so any takedown procedure would require bureaucratic procedures so I am getting notified notified and have time to react.

    But CloudFlare DNS disrupts the scheme together with all other DNS-based CDNs Cloudflare is competing with and puts the archive existence on risk. I offered them to proxy those CloudFlare DNS’s users via their CDN but they rejected. Registering my own autonomous system just to fix the issue with CloudFlare DNS is too expensive for me.

    So Cloudflare isn’t doing anything wrong by passing DNS lookup results it gets from the archive.is servers to its customers instead of trying to ‘fix’ them somehow, but there does seem to be a somewhat legitimate reason for archive.is to be wanting the EDNS subnet information that Cloudflare does not provide due to customer privacy reasons.

    • @[email protected]
      link
      fedilink
      English
      211 months ago

      Returning not the closest IP, but the closest IP in a neighboring country? This is actually pretty smart. I wonder how effective it is at stalling takedowns though.