Maxis and TIME Implements Transparent DNS Proxy
A local digital rights group, Sinar Project, has alleged that two major internet service providers (ISPs) in Malaysia, Maxis and TIME, have implemented a transparent DNS proxy that redirects user traffic to the Malaysian Communications and Multimedia Commission (MCMC)-blocked websites.
⚠️Censorship Update: Malaysian ISPs Maxis and Time are implementing transparent DNS proxy on Cloudflare (1.1.1.1) and Google (8.8.8.8) public DNS servers, users are no longer able to use these alternative DNS servers to access websites blocked by MCMC https://t.co/B9BFd2plPv
— Sinar Project (@sinarproject) August 6, 2024
According to the group, the proxy system was implemented on 5th August, 2024. It reroutes DNS queries intended for Google Public DNS (8.8.8.8) and Cloudflare Public DNS (1.1.1.1) to the ISPs’ own servers. This effectively prevents users from accessing websites the MCMC considers undesirable. This occurs even if users manually configure their devices to use alternative DNS servers.
Sinar Project warns that this practice poses significant security risks as it exposes users to potential data interception and other online threats. The group has urged users to enable DNS over HTTPS (DoH) in their browser settings to protect their privacy and circumvent the proxy.
What is a Transparent DNS Proxy?
A transparent DNS proxy intercepts and modifies DNS requests without the user’s knowledge. In this case, the ISPs are allegedly using this technology to enforce censorship and block access to specific websites.
Security Concerns
The use of transparent DNS proxies can compromise user privacy and security. By intercepting DNS traffic, ISPs can potentially monitor user activity and redirect users to malicious websites.
Protecting Yourself
To mitigate these risks, Sinar Project recommends enabling DNS over HTTPS (DoH) in your web browser. This encrypts DNS traffic, making it more difficult for ISPs to intercept and manipulate it.
