Easy solution: stick your website behind a CDN. That way, people are using a VPN to contact a CDN, and only the CDN ever connects to your website.
And if Utah thinks two degrees of separation isn’t enough… well, it’s likely that every legislator in Utah is two degrees away from someone who will break this law, so they should obviously be the first to be subject to its penalties.
Well that’s the problem. If you’re on a VPN, the site doesn’t know where you’re coming from. So either all VPN services ban Utah, or all websites ban VPNs. It’s a very insidious ploy to ban any anonymity on the internet. It’s essentially letting Utah set the rules for the entire network. And it doesn’t really work anyway. I can create a VPS and set up tailscale or something similar and all my traffic goes through that server. No block of knowable VPN IPs that a website can block. So either Utah blocks all services like tailscale, which is not going to happen, or this is just pointless.
If two computers are connected to the same network, there will always be a way around these sort of restrictions.
There is no way to know someone is connecting to you via a VPN. They just blacklist known IP addresses, so there isn’t really a way to implement this. Sure, you can blacklist well known VPN providers, but anyone can rent a PC in another location to VPN through.
Therefore, they can now criminalize any website they want, for not blocking some VPN contact, that they couldn’t possibly have identified as VPN.
Perfect, isn’t it?
I read, decades ago, that in Communist CCCP, there was a tradition of secret laws … so people got disappeared, charged, convicted, & sentenced … on laws they weren’t permitted to know.
This is related.
Create laws that it isn’t possible to comply with,
then set about obliterating all the “enemy” you want, because now you can convict anybody you want, & there’s nothing anybody can do in defense.
This is one of the most-perfect machiavellianisms they’ve done, thus far.
( the one where the Washington DC bar-association got highjacked by the Republican party, so there won’t be any more Democrat lawyers in there … thereby limiting the pool of people who can practice law in Washington DC … that was another.
The elegance of it I admire, the alignment & intent is evil, which I want … removed … from our world. : )
Yeah this was exactly my point. And this only works if the IPs for the VPN are fairly static. I have no idea if they are. But given that I have heard discussions about doing this I assume that is the case. I mean I have done exactly this (using a VPS) to get around some of the restrictions I see.
I also use that, and it’s just all over the place.
I’ve had issues with my carrier, so I just used foreign SIM in roaming for a while. €11 for 40GB is not that bad.
And then I found I can’t purchase a train ticket. For some reason, ZSSK (Slovakian passenger railway company) blocked IPs of Lifecell (Ukrainian MNO), but was fine with IP from RackNerd (Virginia).
Oh, and the university I am at blocks IPs from “3rd world countries”, the result of which was that Asburn, Virginia is fine, but somehow New York is a 3rd world country.
Their instructions say to use any EU-based VPN.
OneDrive uploads would only work for me over Mullvad without crashing.
You’re right they could. But I’m a systems architect who deals with university wide networks so I know what a cluster fuck that would be. It would be absolutely unmanageable. I’d wager there is no way in hell they are gonna do that.
I’m hopeful that an adult in the room is going to show how unworkable this is gonna be but who knows.
Wait… this is specifically about websites?
Easy solution: stick your website behind a CDN. That way, people are using a VPN to contact a CDN, and only the CDN ever connects to your website.
And if Utah thinks two degrees of separation isn’t enough… well, it’s likely that every legislator in Utah is two degrees away from someone who will break this law, so they should obviously be the first to be subject to its penalties.
I would say the easy solution is to stop serving content to residents of the state
Well that’s the problem. If you’re on a VPN, the site doesn’t know where you’re coming from. So either all VPN services ban Utah, or all websites ban VPNs. It’s a very insidious ploy to ban any anonymity on the internet. It’s essentially letting Utah set the rules for the entire network. And it doesn’t really work anyway. I can create a VPS and set up tailscale or something similar and all my traffic goes through that server. No block of knowable VPN IPs that a website can block. So either Utah blocks all services like tailscale, which is not going to happen, or this is just pointless.
If two computers are connected to the same network, there will always be a way around these sort of restrictions.
There is no way to know someone is connecting to you via a VPN. They just blacklist known IP addresses, so there isn’t really a way to implement this. Sure, you can blacklist well known VPN providers, but anyone can rent a PC in another location to VPN through.
Precisely:
Therefore, they can now criminalize any website they want, for not blocking some VPN contact, that they couldn’t possibly have identified as VPN.
Perfect, isn’t it?
I read, decades ago, that in Communist CCCP, there was a tradition of secret laws … so people got disappeared, charged, convicted, & sentenced … on laws they weren’t permitted to know.
This is related.
Create laws that it isn’t possible to comply with,
then set about obliterating all the “enemy” you want, because now you can convict anybody you want, & there’s nothing anybody can do in defense.
This is one of the most-perfect machiavellianisms they’ve done, thus far.
( the one where the Washington DC bar-association got highjacked by the Republican party, so there won’t be any more Democrat lawyers in there … thereby limiting the pool of people who can practice law in Washington DC … that was another.
The elegance of it I admire, the alignment & intent is evil, which I want … removed … from our world. : )
_ /\ _
Yeah this was exactly my point. And this only works if the IPs for the VPN are fairly static. I have no idea if they are. But given that I have heard discussions about doing this I assume that is the case. I mean I have done exactly this (using a VPS) to get around some of the restrictions I see.
Same here. Running WireGuard on a VPS in Seattle.
Paying $10 a month, but that’s just because I also use that VPS for OwnCloud as well.
There’s services that not only check for known VPN servers, but also for IPs in datacenter IP blocks. So using a VPS could in theory also be blocked.
I set up a VPS as a VPN server just for me. There’s sites have definitely done this. Reddit for one. I get cloudflare captchas a lot as well.
I also use that, and it’s just all over the place.
I’ve had issues with my carrier, so I just used foreign SIM in roaming for a while. €11 for 40GB is not that bad.
And then I found I can’t purchase a train ticket. For some reason, ZSSK (Slovakian passenger railway company) blocked IPs of Lifecell (Ukrainian MNO), but was fine with IP from RackNerd (Virginia).
Oh, and the university I am at blocks IPs from “3rd world countries”, the result of which was that Asburn, Virginia is fine, but somehow New York is a 3rd world country.
Their instructions say to use any EU-based VPN.
OneDrive uploads would only work for me over Mullvad without crashing.
I also had Reddit block Czech T-Mobile IPs.
You’re right they could. But I’m a systems architect who deals with university wide networks so I know what a cluster fuck that would be. It would be absolutely unmanageable. I’d wager there is no way in hell they are gonna do that.
I’m hopeful that an adult in the room is going to show how unworkable this is gonna be but who knows.
Oh those legislators are two degrees away from something being broken, and it ain’t this dumbass law.