25Oca
Most likely route to hostile domain take-over?
Say a citizen-run journalist site is a target of a hostile government. The site is hosted over HTTPS in a different country, outside the government's reach. However, the site domain name is within the country's top level domain.
I think the most likely route for the hostile government is to take over the DNS record, intercept ACME and simply replace the infrastructure with their own, without the users necessarily noticing, after which slow-paced censorship can start taking place.
What is the most likely sequence of steps the hostile government will perform to take over the DNS record?
- no DNSSEC enabled
- DNSSEC enabled
Does the usage of DNSSEC make the take-over easier or more difficult?
