Saw on /k tered that DoH and DoT are not actually blocked and something about TM not having certs?

Does that mean if TM's servers functioned properly, then 8.8.8.8 and other famous DNS would still be usable with DoH, or still blocked?

Not sure whom to trust more, people on this forum/thread of /k lmao.

To be clear,it is never be blocked. JUST REROUTE/REDIRECT.
It is just because the ips has been redirected to TM DNS server,and DOT and DOH need to verify the certificate in order to serve the dns queries.
So when it is redirected,the browser or devices cant verify the domain and certificate to be match with authorities ,so it just out of works to prevent MITM attack.

This post has been edited by go626201: Sep 6 2024, 07:30 PM

they didnt block DoH or DoT port 853 directly

however, they are forcibly redirecting your connection for those well known IPs
like, your device asks and says it want's to go to 8.8.8.8
tm says oh it's here
but instead of sending it to the real google, you get sent to tm's trap

but when your device wants to talk with it, it sees that it is dns.tm.net.my, not what it was expecting
and throws an error

if you device doesn't care/verify, then your device thinks its connected to dns.google DoH but is actually TM and the dns exchange happens

their goal is to block stuff and both of these work to block
one just kills the connection as your device knows it's not the correct server
the other just ends up with you asking tm when you think you're asking google

If they just block/drop it without redirect,confirm atleast 40% of users will suddenly cant use the internet as many people using google dns.
Especially those chrome browser usually equip with google dns.

This post has been edited by go626201: Sep 6 2024, 07:35 PM

Honestly, I think what is most diabolical of it all is that the bastards carried this out in stages, so we're all not sure on the extent/how bad it is.

Understood. So basically no change for end user since 1am earlier and DoH is still affected. It's just that it isn't actually blocked.

I was just confused by the whole 'they just implemented HTTPS on the TM hijack servers' thing that was mentioned.

i cant connect
mode light red
georgetown penang

unifi air broadband

nothing was announced

at first it was some late night 3am tests being noticed in this forum

then Sinar Project sounded the alarm

now this month we are seeing all the ISPs implement it
with TM implementing the most draconian one

if upgrade again i pay 89 per month for 1GBps plan ,sad

Curious, why I couldn’t access https://dns.google/ but the ponhub (example) can?

I am using iPhone safari to test it out, with Private Relay off

This post has been edited by jiaen0509: Sep 6 2024, 07:52 PM

Does anyone have Unifi account for sell?

Prefer Rm 99 for 300Mbps or Rm 119 for 500Mbps Unifi account.

Can accept continue contract or end of contract. Thanks guys.

because they have specially blocked those dns provider websites

if you click on view certificate, you will see it says it's dns.tm.net.my

1. maybe, it's not because they detect DoH. After all, DoH is also using tcp/443 like regular HTTPS pages. what might happen is the plain udp/53, plain tcp/53, DoH'a tcp/443, and/or SoT's tcp/853 are all parked on same IP, and thus affected when ISP simply reroute the IP address.

2. maybe, because ISP start using Deep Packet Inspection (DPI), read the initial SNI, and determine this is actually DoH session. plain SNI is precusor to establishing encrypted web HTTPS session. if i am hunting for more DoH, any duly-named "doh.hiding.net" is self-declaring DoH in my opinion.

Deadline is 30th September.

https://www.business.maxis.com.my/en/faq/da...ns-redirection/

This post has been edited by Azusa_San: Sep 6 2024, 08:09 PM

At least he aware of what MCMC or telco under his ministry do recently. While, he didn’t mention about the times line for appeal would take a year or era to review🤣

“…so they (complainants) can submit appeals, and that body will decide whether to lift the block or not,"

Yo guys, really wanna download VPN oso they blocked?

is it just me?
becoz I feel open website response is alot slower for the website to load since this called dns hjack thing implemented

Does that mean Cloudflare can officially sue them instead?
The company is doing business in Malaysia and he suka suka ask ISP to hijack IP belonging to the company, causing a lot of issue to their customers.