[aquatica]

If you are connecting from an Italian ISP to https://mil04s43-in-f1.1e100.net you're going to be greeted by a message from AGCOM telling you the website has been used to spread copyrighted content.

This already happened with a Cloudflare CDN before. https://community.cloudflare.com/t/blocking-of-my-website-vi...

https://imgur.com/a/EKFHROX

[cdesai]

How can they do that with HTTPS though?

HTTP sure they can happily MITM and redirect, but with HTTPS you need a valid cert.

[aquatica]

Your browser shows a TLS warning saying that the certificate doesn't match. If you override it, it brings you to that page.

This is not a DNS block, the IPs are owned by Google, Italian ISPs are forced to forward the traffic of a blocked IP to AGCOM's servers.

[toyg]

DNS.

[gruez]

Connecting with https prevents any DNS poisoning, unless the ISP managed to get a fraudulently issued certificate or a MITM root CA installed on the end users' devices. Neither seem likely.

[toyg]

It's not poisoning, it's blocking.

[patchymcnoodles]

I don't get that, and I'm connecting from the biggest italian provider TIM. I first get a warning from the browser because of the certificate. If I go forward I just get a 404. But maybe it changed in the last hours?

[aquatica]

TIM and WindTre have overridden the block, don't know about the other ISPs.