ооо развлекательный онлайн-сервис is netflix partner (basically THEY operate Netflix in Russia, if you pay for netflix.com from Russia - you will get receipts from ооо развлекательный онлайн-сервис, etc)
It's likely they also responsible for anti-pirate efforts.
Also, Group-IB's status as Singapure company is same as Yandex being Netherlands company. For all practical reasons, both are Russian companies.
--
Unfortunately the 2021 regulatory proposal makes the risks associated with the QWAC framework much more dramatic, and will lead to a regression in the security assurances that users have come to expect from their browsers. This is because through Article 45.2, the legislative proposal, in effect, mandates that browsers automatically include Trust Service Providers (TSPs) in their browser root programs. ‘Trust Service Providers’ (TSPs), in this context, are essentially Certificate Authorities (CAs) that can issue QWACs under the eIDAS regime. These TSPs are notified by member states and as Mozilla has highlighted in the past, many of them do not meet the criteria required to also be included in our Root Store. By mandating that TSPs be supported by browsers in general, and in particular when they fail to meet the security and audit criteria of their root program, Article 45.2 will negatively transform the website security ecosystem in a fundamental way. This is outlined in the following subsection in more detail
I don't undertstood why they were sued under CFAA in first place.
They don't USE their tools after all.
Only logical way this can be legal is suing them for illegally distributing something which should require export licenses. But hack tools doesn't require licenses. Yet.
One possible reason - How does it make sense for Turkey to arrest people based on behalf of USA (let's assume reason for arrest is murder or large-scale theft) if Turkey knew they requests for same things wont't be honored?
I think this is not enough.
ARIN/RIPE/LANIC/AfriNIC should be sued because they provide IP addresses and ASN numbers to ISPs/Hosting Providers of those filthy infringers.
Tim Berners Lee and CERN should be sued too (for creation of web and NOT implementing effective and mandatory copyright control).
So why users should trust banners that information in post X was checked by independent fact-checkers and found to be false if it's clearly NOT the case? No matter reason.
One Russian delivery company (link https://vc.ru/claim/192669-dostavista-ne-dostavil-posylku-i-ne-vozvrashchaet-dengi-za-dostavku , text in Russian), basically uber but for courier services tried even more interesting thing.
Client send package. Courier didn't deliver it. Package was lost.
Company says they will refund package price but not delivery price. Reason? Client somehow have direct contract with courier so it's client's (and courier's) problem. Or police. No, client can't see this 'contract' because of personal data legislation. Also, refunding package price is implemented in such way that company just takes money away from courier on behave on client (basically like collectors work).
Bank chargeback is not possible in this specifc case.
It's interesting if such ideas will be implemented in places which have much more freedom of contract.
Of course I (and many others) use VPN for this purposes. There is no anti-VPN (like Chinese one) blocks in place in Russia as far I'm aware. VPN providers should implement block list too (per another Russian law) but they either ignore it or said that they don't work in Russia so it's not apply to them).
I meant that block hardware (it's not always full-scale and costly DPI device) can't filter specific pages on site due to https.
(Correct way per Russian law is send site and it's hoster notices anyway but they sometimes ignored. One example - Youtube only partially honor those notices and this mean it SHOULD be blocked per Russian law but somehow it's not blocked).
Problem with blocking specific pages is that it's not possible due to https.
Nobody really lost anything (Except some time to establish workarounds for tools which are not regular web browsers).
As for 'blocking is idiotic' - there was whole story with Telegram.
They were asked to provide encryption keys for monitoring terrorists. Telegram responded that they can.
Blocking was attempted.
Results:
A LOT of sites got blocked (if you do block AWS ranges by /16 - you will block something legitimate after all). Sometimes Google's infrastructure gots blocked.
Telegram worked.
MT-PROTO proxies were also added to it.
Some goverment agencies have 'official' channels and while TG was blocked.
Telegram was ublocked some time after 'gram' issue.
There was NO attempt to order Apple and Google to remove Telegram from Russian sections of AppStore/PlayStore (it's not that Apple/Google refused, Roskomnadzor didn't even publish press release (as far as I knew) about asked).
(usual system here is that Roskomnadzor is involved in implementing all such decicisions).
This whole idiocity just forces people to learn how to ignore those blocks.
just for information:
it looks like S.B.A Music Publishing (I think they worked on RIAA's behalf here) tried to sue in Russia (there is special procedure for such cases).
They also didn't even tried to sue site owner. They sued Hetzner (German hosting provider) instead. Hetzner's representatives didn't come to court session.
Results:
Hetzner is to pay (small) court fees.
Hetzner is to stop providing hosting for this site (or prevent rights violations).
Site is to be blocked in Russia and it's blocked by ISP. Given that blocking is used for many other other things except copyright issues, A LOT of Russian users just use tools to ignore such blocks. All people who works in IT have to do that sometimes because sometimes even github got blocked (due to 'sucicide content')
I doesn't knew USA's legal system too much but could someone explain why unlock is necessary at all if police knew "what is on the phone[s]" .
Why not pass judgment based on data police themselves said they knew?
Do they need data to prosecute others? Are data they said to know can't be used in court?
Because the great majority of books for adults are text only, or at least very nearly so.
Well, I guess that that raywenderlich.com's books are mainly targeted at children (their ebooks are rather large PDFs, with a lot of colored and specially formatted text and pictures. They sometimes have EPUB3 versions but they have almost same size as their PDFs).
Why stop at alibaba? There are Warner Bros. and Scholastic (and one J.K.R.) who blatantly violate rights on unicorns. All violating books should be confiscated and burned. All 8 movies should also be removed from distribution RIGHT NOW! All profits should be rerouted to rightful owners.
Why China?
Why even Afganistan?
ISIS's courts issue fully legal decisions (at least THEY think so) which MUST be followed by ALL internet companies (including EU ones).
>So does all Dasilva needs to do is log in to an Australian VPN and the items should be there and downloadable again... or is IP region hopping like that somehow illegal in the minds of these people as well?
VPN will not help. IP does NOT matter here. Only country in iTunes account does./div>
(untitled comment)
Situation is slightly different.
ооо развлекательный онлайн-сервис is netflix partner (basically THEY operate Netflix in Russia, if you pay for netflix.com from Russia - you will get receipts from ооо развлекательный онлайн-сервис, etc)
Reason for this deal - Russia's legislation about movie streaming services,
check https://www.interfax.ru/russia/813036 (in Russian).
It's likely they also responsible for anti-pirate efforts.
/div>Also, Group-IB's status as Singapure company is same as Yandex being Netherlands company. For all practical reasons, both are Russian companies.
Main issue from actual Mozilla's PDF
--
Unfortunately the 2021 regulatory proposal makes the risks associated with the QWAC framework much more dramatic, and will lead to a regression in the security assurances that users have come to expect from their browsers. This is because through Article 45.2, the legislative proposal, in effect, mandates that browsers automatically include Trust Service Providers (TSPs) in their browser root programs. ‘Trust Service Providers’ (TSPs), in this context, are essentially Certificate Authorities (CAs) that can issue QWACs under the eIDAS regime. These TSPs are notified by member states and as Mozilla has highlighted in the past, many of them do not meet the criteria required to also be included in our Root Store. By mandating that TSPs be supported by browsers in general, and in particular when they fail to meet the security and audit criteria of their root program, Article 45.2 will negatively transform the website security ecosystem in a fundamental way. This is outlined in the following subsection in more detail
As far as I understood this means that browser's root stores must use CAs for 'special' https certificates from CAs which have nothing to do with being open and accountable to public. They also can be insecure.
Another possible is that this it would be more hard to found reason other than 'we don't trust your goverment' to NOT accept Chinese's (or Burmese(https://www.techdirt.com/articles/20211114/17280147944/updated-myanmars-military-junta-sente nces-american-journalist-to-eleven-years-prison.shtml ) version of it).
All borwser
/div>(untitled comment)
I don't undertstood why they were sued under CFAA in first place.
/div>They don't USE their tools after all.
Only logical way this can be legal is suing them for illegally distributing something which should require export licenses. But hack tools doesn't require licenses. Yet.
Re: Re:
I thought that (in USA) this means retrial with another jury. Isn't it?
/div>Re: Re:
USA vs Turkey is bad example due to those reasons.
/div>USA vs Russia (or China) is much better example here.
Re:
One possible reason - How does it make sense for Turkey to arrest people based on behalf of USA (let's assume reason for arrest is murder or large-scale theft) if Turkey knew they requests for same things wont't be honored?
/div>(untitled comment)
I think this is not enough.
/div>ARIN/RIPE/LANIC/AfriNIC should be sued because they provide IP addresses and ASN numbers to ISPs/Hosting Providers of those filthy infringers.
Tim Berners Lee and CERN should be sued too (for creation of web and NOT implementing effective and mandatory copyright control).
Re:
This could backfire if other countries follow suit and decide it's USA broke their laws. What next - use of direct miliatary force?
/div>(untitled comment)
So why users should trust banners that information in post X was checked by independent fact-checkers and found to be false if it's clearly NOT the case? No matter reason.
/div>Re: Re: politics of politics.
Not necessary.
One Russian delivery company (link https://vc.ru/claim/192669-dostavista-ne-dostavil-posylku-i-ne-vozvrashchaet-dengi-za-dostavku , text in Russian), basically uber but for courier services tried even more interesting thing.
Client send package. Courier didn't deliver it. Package was lost.
Company says they will refund package price but not delivery price. Reason? Client somehow have direct contract with courier so it's client's (and courier's) problem. Or police. No, client can't see this 'contract' because of personal data legislation. Also, refunding package price is implemented in such way that company just takes money away from courier on behave on client (basically like collectors work).
Bank chargeback is not possible in this specifc case.
It's interesting if such ideas will be implemented in places which have much more freedom of contract.
/div>Re: Re: Re:
Of course I (and many others) use VPN for this purposes. There is no anti-VPN (like Chinese one) blocks in place in Russia as far I'm aware. VPN providers should implement block list too (per another Russian law) but they either ignore it or said that they don't work in Russia so it's not apply to them).
I meant that block hardware (it's not always full-scale and costly DPI device) can't filter specific pages on site due to https.
/div>(Correct way per Russian law is send site and it's hoster notices anyway but they sometimes ignored. One example - Youtube only partially honor those notices and this mean it SHOULD be blocked per Russian law but somehow it's not blocked).
Re:
As far as I knew, other methods should be tried with github per applicable laws. Not sure if they were tried in this case.
Github later started to accept such notices - check https://github.com/stevebest/suicide (another 'methods of sucide' list, I think it was posted as joke ), doesn't open from Russian IPs, redirects to https://github.com/github/roskomnadzor/blob/master/2014-11-27-roskomnadzor.md )
(you can google translate and check how seriuous was methods are)
Problem with blocking specific pages is that it's not possible due to https.
Nobody really lost anything (Except some time to establish workarounds for tools which are not regular web browsers).
As for 'blocking is idiotic' - there was whole story with Telegram.
They were asked to provide encryption keys for monitoring terrorists. Telegram responded that they can.
Blocking was attempted.
Results:
A LOT of sites got blocked (if you do block AWS ranges by /16 - you will block something legitimate after all). Sometimes Google's infrastructure gots blocked.
Telegram worked.
MT-PROTO proxies were also added to it.
Some goverment agencies have 'official' channels and while TG was blocked.
Telegram was ublocked some time after 'gram' issue.
There was NO attempt to order Apple and Google to remove Telegram from Russian sections of AppStore/PlayStore (it's not that Apple/Google refused, Roskomnadzor didn't even publish press release (as far as I knew) about asked).
(usual system here is that Roskomnadzor is involved in implementing all such decicisions).
This whole idiocity just forces people to learn how to ignore those blocks.
/div>(untitled comment)
just for information:
it looks like S.B.A Music Publishing (I think they worked on RIAA's behalf here) tried to sue in Russia (there is special procedure for such cases).
They also didn't even tried to sue site owner. They sued Hetzner (German hosting provider) instead. Hetzner's representatives didn't come to court session.
Results:
how to get details (in Russian): https://isitblockedinrussia.com/?host=FLVTO.biz (site shows 'by Мосгорсуд' it's court decision using this special procedure). details (in Russian) https://mos-gorsud.ru/mgs/services/cases/first-civil/details/1d14a33a-5a26-429f-8681-c0dead69915d )
/div>Re:
One word - scalability.
/div>Almost everything (even MySQL(!)) is better than SQLite in this regard.
(untitled comment)
I doesn't knew USA's legal system too much but could someone explain why unlock is necessary at all if police knew "what is on the phone[s]" .
/div>Why not pass judgment based on data police themselves said they knew?
Do they need data to prosecute others? Are data they said to know can't be used in court?
Re: Re: Re: Re: Re: This is the reason why I own tens of thousan
Well, I guess that that raywenderlich.com's books are mainly targeted at children (their ebooks are rather large PDFs, with a lot of colored and specially formatted text and pictures. They sometimes have EPUB3 versions but they have almost same size as their PDFs).
/div>Re: Just watch it:
Works in Russia
/div>(untitled comment)
Why stop at alibaba? There are Warner Bros. and Scholastic (and one J.K.R.) who blatantly violate rights on unicorns. All violating books should be confiscated and burned. All 8 movies should also be removed from distribution RIGHT NOW! All profits should be rerouted to rightful owners.
/div>Re: Local Law
Why China?
/div>Why even Afganistan?
ISIS's courts issue fully legal decisions (at least THEY think so) which MUST be followed by ALL internet companies (including EU ones).
Re: I bet there is a way around this geo blocking thing
VPN will not help.
IP does NOT matter here. Only country in iTunes account does./div>
More comments from Vikarti Anatra >>
Techdirt has not posted any stories submitted by Vikarti Anatra.
Submit a story now.
Tools & Services
TwitterFacebook
RSS
Podcast
Research & Reports
Company
About UsAdvertising Policies
Privacy
Contact
Help & FeedbackMedia Kit
Sponsor/Advertise
Submit a Story
More
Copia InstituteInsider Shop
Support Techdirt