Boring enough to use #Debian, fun enough to use #Arch • #Hardware & #Software Development • #RapidPrototyping • #EmbeddedSystems — he/him
I don’t post exclusively about one topic. Expect random stuff on #coding, #retrocomputers, #DIYsolar, or things I’m passionate about like #livablecities, #a11y.
I love to chat about my own interests, but also boost/share things that are new to me that I find interesting. #art, #literature, #food, and whatever else, I’m excited to explore it all!
I definitely agree that these types of blocking are ineffective and generally do more harm than good, but if governments are going to push for this stuff, it would be good to have a solution that doesn’t harm people’s security and privacy.
There are lots of ways around doing a full SSO integration, though.
In the simplest form, the ISP could simply use a captive portal of some sort directing the user to authenticate first.
While captive portals can’t serve the correct certificate most browsers these days are smart enough to detect a captive portal redirect and give the user a smoother experience.
My scheme doesn’t require any identity information to be provided by the user.
The ISP already has PII, but that’s a risk that already exists today.
It might hurt their bottom line, but the big companies operate in so many different markets and I don’t think there’s any risk of _all_ of them enacting these types of restrictions.
It’s the US republicans who want to do this, not me, I’m just approaching this as an interesting problem.
As for my suggested solution, the only database would be the list of sites with adult content. No new personal data would be stored about individuals.
I’m not suggesting that ISPs implement photo-ID checks, just a login with your ISP username/password (an account you already have).
I don’t think there’s any risk of _any_ of these schemes killing off internet porn.
The current government schemes all rely on porn companies opting in and on the government/ISPs to catalog all porn sites on the internet.
@TheCuriousCoder87
You wouldn’t necessarily have to actually give a CA any details about yourself, just integrate this into the existing ISP portals.
An adult can log into the provider’s website and click to generate any client certs they need.
I think this method is maybe a bit _too_ technical (compared to a simple captive portal like you get on public wifi) but I think it would work okay as long as end-users didn’t have to go to a 3rd-party or provide any additional information to their ISP to use it.