Just change to unaffected DNS. like list above. but dun know how long those last.

https://www.internetsociety.org/blog/2014/0...d-dns-security/

If your favourite porn site not working, take some time off, read this. Same thing happening now that happened in Turkey in 2014.

Just find and replace Turkey with Malaysia and TurkTelekom with TM and already got news article for tomorrow. ChatGPT not needed.

Government doing stupid shit doesn't mean it's not illegal/excessive though. I was wondering if FMT is still reliable to complain to or are they toadies now

Complain doesn't work, see other countries with censorship because majority don't care.

it is the absolute height of hypocrisy that the ones in power right now are the ones to direct the ISPs to do this when in the past it was they themselves (e.g. DAP) who taught Malaysians how to circumvent censorship when their own sites and blogs were blocked by the previous administrations.

There is no positive way they can frame this move, and i reckon it's extremely eye opening for those who were still coping about the true nature of this current government.

the majority, that are not on this forum, that have never touched the config page of their router before, and just use their connection to browse fb/tiktok/youtube/instagram would not feel a difference at all
they dont even know what DNS is

the majority will be silent because as far as they're concerned, nothing changed, it just works fine
and they trust the system, oh , a website is blocked? then it must be a bad website that deserves to be blocked
there's a reason why these changes were not announced publically

we are a loud technical minority

Won't work.
See blacktubi answer.

But unless your job requires access to dns.google or one.one.one.one, I won't be too into it.
But here's the thing, I am sensing the government is trying to break the internet slowly.
Someday they will break all the VPN.

EDIT:
Clarification:
Amazon can bypass DNS block.
Amazon won't bypass BGP hijack.

IPv6 Google DNS still seems to be working for me. Unifi does not seem to be blocking the *ahem* websites.

Sounds ridiculous, majority of ArtStation users are professional artist showing their reels

Is your friend using IPv4 or IPv6 DNS?
IPv4 looks like 8.8.8.8 and 8.8.4.4 while IPv6 looks like 2001:4860:4860::8888

According to a friend running UDM SE, DNS Shield cant be used now
Once enable terus DC

Yes for the first
Rest I dont know, but I remember it supports different DNS services but Ubnt doesnt allow customization
So TM basically blocked eveything in the list probably?

To be clear,it is never be blocked. JUST REROUTE/REDIRECT.
It is just because the ips has been redirected to TM DNS server,and DOT and DOH need to verify the certificate in order to serve the dns queries.
So when it is redirected,the browser or devices cant verify the domain and certificate to be match with authorities ,so it just out of works to prevent MITM attack.

they didnt block DoH or DoT port 853 directly

however, they are forcibly redirecting your connection for those well known IPs
like, your device asks and says it want's to go to 8.8.8.8
tm says oh it's here
but instead of sending it to the real google, you get sent to tm's trap

but when your device wants to talk with it, it sees that it is dns.tm.net.my, not what it was expecting
and throws an error

if you device doesn't care/verify, then your device thinks its connected to dns.google DoH but is actually TM and the dns exchange happens

their goal is to block stuff and both of these work to block
one just kills the connection as your device knows it's not the correct server
the other just ends up with you asking tm when you think you're asking google

1. yes, TM's DNS servers are functioning correctly, albeit selectively returning poisoned results.

2. SSL certificate is a passport belonging to the organisation that issued or purchase it.

3. What is happening now is akin to everyone being sent to meet TM, and TM is presenting its own passport dns.tm.net.my but claiming to be Google, to be Cloudflare, to be Quad9, and all.

4. Up to you whether you want to believe it.

5. You're a fool deserving if you actually believed it, though.

And risk destroying the existing digital economy for Malaysian?

The minister better becareful not to trigger any uprising instead.

He has no leverage at all even with current DNS blocking and IP hijacking. Zero leverage.

If you feel that your rights as a citizen is being breached by this DNS hijacking, then do read the previous posts on how to break through this breach of rights.

Nothing. You're still dealing with a routed/hijacked IP.

This is what I’m concerned about and Fakmi just confirmed it. Any ministry can request a website block to the ISP without any justification or process. Simply request, then ISP will block. But to unblock, have to go to tribunal and god knows how long the process would be

"oh, @KDN asked to block because of copyright violation."

b****lah.

one copyright infringed by random individual, and they decide to block the site provider.
this is like bakar kelambu kerana marahkan nyamuk.
akai takde? otak letak kat lutut lantai ka?

Ah, you mean the deity fighting game? 

Seriously, there is no judicial or process at all.

Where does the doctrine innocent until proven guilty go?
As per wikipedia, under the presumption of innocence, the legal burden of proof is thus on the prosecution, which must present compelling evidence to the trier of fact.

Also the time when they buy a Spyware from The Hacking team, and planning to deploy it on ISP.