Conversation

Notices

1. Embed this notice
   mcc (mcc@mastodon.social)'s status on Tuesday, 13-Feb-2024 05:51:55 JST mcc

   Core Rust infrastructure is frequently hosted on the .rs ccTLD. Some of these sites could be used to drive supply chain attacks if their domains were ever compromised. .rs is operated by an NGO, but ultimately controlled by the government of Serbia.

   Do there exist plausible future chains of events that could lead to some future government of Serbia suspending, or redirecting, Rust project/community sites hosted under .rs? Does the Rust community have contingency plans for this hypothetical?

   • Haelwenn /элвэн/ :triskell: likes this.
   • Embed this notice
     Conny Duck (connyduck@chaos.social)'s status on Tuesday, 13-Feb-2024 05:52:43 JST Conny Duck

     in reply to

     @mcc well the President of Serbia is a Putin fan and the situation with Kosovo can escalate any time

     Haelwenn /элвэн/ :triskell: likes this.
   • Embed this notice
     Rich Felker (dalias@hachyderm.io)'s status on Tuesday, 13-Feb-2024 05:53:34 JST Rich Felker

     in reply to

     @mcc The right way to solve this is not to address stuff with domains whose ownership is transient, but with some sort of address whose semantics are "the site run by the party who owned domain D at time T" in a way that's cryptographically provable via DNSSEC signature chain that was valid at time T and whose existence was attested to by a notary at time between T and T+ε.

     Haelwenn /элвэн/ :triskell: likes this.
   • Embed this notice
     lauren n. liberda (selfisekai@social.hackerspace.pl)'s status on Tuesday, 13-Feb-2024 05:54:28 JST lauren n. liberda

     in reply to

     @mcc had to take this one out of my archive

     Haelwenn /элвэн/ :triskell: likes this.