• Dark Arc@social.packetloss.gg
    link
    fedilink
    English
    arrow-up
    12
    ·
    7 months ago

    If I implement my service to use the same underlying IP address for the primary service/critical access that I use for advertising services (e.g., I put a load balancer and have Windows Advertising integrated with Windows Update via the same IP addresses), you can’t block the IP without breaking Windows Update.

    That’s worse for other ingrained systems, e.g., a news app that actually has to send you content could do this instead of using separate IPs for the advertising service, and then if you want to use their service you have to accept the advertising packets.

    If you’re relying on DNS for your blocking as well, it’s entirely possible to distribute the IP address information without ever involving DNS by syncing up the appropriate IPs out of band on some built in IP addresses hard coded in the binary (plenty of things do this sort of thing already for security purposes, they want to minimize the risk of a local DHCP server handing out some garbage DNS record and sending you a virus via their update mechanism).

    I could go on.

    Do yourself a favor and learn a bit more about how this shit works lest you look like an idiot.

    Don’t be a dick; especially if you don’t know what you’re talking about. Thanks.