[Yeahsureok]

My ISP injects ads into http sites often.

Now just imagine what this corrupt third world government here can do.

Of course its "not a problem" if you aren't a vulnerable person who dares go against the grain, but on the whole it is.

If your site is not using tls then it's automatically blocked sorry, maybe I'm not your target audience regarding security blogs though :)

[yardstick]

I think the more important question is why are you still supporting this ISP by being their customer?

[ripdog]

In corporate hellscapes like the USA, there is often no choice in ISPs, either because other ISPs can't justify the infrastructure investment to set up in opposition to the incumbent, or because the incumbent has lobbied local government to make use of power poles/conduits exclusive to them.

[gernb]

could be on airport wifi, store wifi, cafe wifi, hotel wifi, etc...

https prevents them injecting shit

[Handytinge]

None of those are networks I could consider secure.

Even with https, there's no scenario where I'm not encapsulating all traffic in a tunnel there.

[yardstick]

Sure, but this was in specific reference to “My ISP”. I can understand no choice in a hotel/cafe/etc. But there’s now lots of choice for home internet. Wired, cellular, even Starlink.

[ranger_danger]

As if most people even have a choice.

[Handytinge]

If you're security focused, why not GRE tunnel to a vultr or similar VM and exit there? Then your ISP gets no information.