No more Pornhub? That will depend on what happens with a Senate bill::A Senate bill might cause the owners of Pornhub to block access to the site in Canada, its owners say.

  • Atlas_@lemmy.world
    link
    fedilink
    English
    arrow-up
    9
    ·
    9 months ago

    I don’t trust them first off, but even trusting them to not voluntarily disclose it doesn’t mean they won’t have a security breach and disclose it involuntarily. Also, the database has to be created and queried somehow; some employees and govt workers will be able to see what queries are made. Even trusting the business and the govt and the security of both, I don’t trust those random people having access to that info.

    What evidence do you have to give the website that you are person X that they’re running the database query against? If that’s an ID there’s going to be some available online, or a kid can just sneak it from the parent. Everything I’ve heard proposed for the identification strategy is either grossly invasive or quite easy to step over.

    I don’t believe that Canada will actually enforce this across all websites. If they do it on only the large/main ones, it makes it harder for kids to access the relatively safe and legal porn hosted on sites making effort to follow the law, and pushes them towards sites that aren’t making such an effort and therefore probably have more objectionable content.

    • RedFox@infosec.pub
      link
      fedilink
      English
      arrow-up
      1
      ·
      9 months ago

      Yeah, I agree with not liking people having that info, but ISPs do, unless you use VPN, and then the VPN does.

      We just usually don’t hear of that getting leaked from VPN providers since their reputation is on the line.

      Data breach would also be a bummer. If a criminal group takes the time to breach a government database, I think it would be wasted effort to try black mailing people over porn access. Unless you’re a priest. Then uh oh.

      The way you get positive ID that can’t be skirted is with government issues ID card with PKI. All US federal employees have ID cards issued by their department. It has certs that let you sign into computers, sign documents, etc. It’s 2FA, card and a PIN.

      Every driver in the US is supposed to have a driver’s license. They just need to add PKI to them. Then you sign into a website with your DL and PIN. You’d never need a million accounts anymore. Caveats apply.