[Add] Googles Experimental DoH Endpoint
"Winfield, Alister" <Alister.Winfield@sky.uk> Fri, 17 May 2019 12:53 UTC
Return-Path: <Alister.Winfield@sky.uk>
X-Original-To: add@ietfa.amsl.com
Delivered-To: add@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 508F3120151 for <add@ietfa.amsl.com>; Fri, 17 May 2019 05:53:05 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -2.001
X-Spam-Level:
X-Spam-Status: No, score=-2.001 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_NONE=-0.0001, RCVD_IN_MSPIKE_H2=-0.001, SPF_PASS=-0.001, T_DKIMWL_WL_HIGH=-0.01, T_MIME_MALF=0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1024-bit key) header.d=sky.uk
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id j60fuUd9dDq1 for <add@ietfa.amsl.com>; Fri, 17 May 2019 05:53:01 -0700 (PDT)
Received: from EUR04-VI1-obe.outbound.protection.outlook.com (mail-eopbgr80071.outbound.protection.outlook.com [40.107.8.71]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id D358A1200B9 for <add@ietf.org>; Fri, 17 May 2019 05:53:00 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=sky.uk; s=selector2; h=From:Date:Subject:Message-ID:Content-Type:MIME-Version:X-MS-Exchange-SenderADCheck; bh=hg+OV9lA10J/lIuNNXwP8nWzQ6a7nDcq8CahkJk/MXs=; b=LTIjk9PpBlLOtMChfzkK7krDkk+hha+3Eb7M7loeaHuD8gsTtmLXLs5xQOehcvfU0WJJ0+yIaNdbSulWzSSOLMDysEArtjQbhWYJUL3Rz0KXgzTm7uluHIFpUlmcGrvMhZErnaumNND2UjsNj78gW3mISinubzGdl4i9/ZKpnfc=
Received: from DB6PR0601MB2184.eurprd06.prod.outlook.com (10.168.51.153) by DB6PR0601MB2199.eurprd06.prod.outlook.com (10.168.57.140) with Microsoft SMTP Server (version=TLS1_2, cipher=TLS_ECDHE_RSA_WITH_AES_256_GCM_SHA384) id 15.20.1900.17; Fri, 17 May 2019 12:52:57 +0000
Received: from DB6PR0601MB2184.eurprd06.prod.outlook.com ([fe80::883b:b573:ea6d:2d54]) by DB6PR0601MB2184.eurprd06.prod.outlook.com ([fe80::883b:b573:ea6d:2d54%3]) with mapi id 15.20.1878.024; Fri, 17 May 2019 12:52:57 +0000
From: "Winfield, Alister" <Alister.Winfield@sky.uk>
To: "add@ietf.org" <add@ietf.org>
Thread-Topic: Googles Experimental DoH Endpoint
Thread-Index: AQHVDK9zlKm7FRHk8k+XgZodozev6A==
Date: Fri, 17 May 2019 12:52:56 +0000
Message-ID: <3BD0C1E6-A937-4F51-AB17-8D449D6C7036@sky.uk>
Accept-Language: en-GB, en-US
Content-Language: en-US
X-MS-Has-Attach:
X-MS-TNEF-Correlator:
user-agent: Microsoft-MacOutlook/10.19.0.190512
authentication-results: spf=none (sender IP is ) smtp.mailfrom=Alister.Winfield@sky.uk;
x-originating-ip: [2a02:c7d:e2db:2400:5019:566b:5d28:7212]
x-ms-publictraffictype: Email
x-ms-office365-filtering-correlation-id: 8bc998a5-ee6e-4c69-e272-08d6dac695df
x-microsoft-antispam: BCL:0; PCL:0; RULEID:(2390118)(7020095)(4652040)(8989299)(4534185)(4627221)(201703031133081)(201702281549075)(8990200)(5600141)(711020)(4605104)(2017052603328)(7193020); SRVR:DB6PR0601MB2199;
x-ms-traffictypediagnostic: DB6PR0601MB2199:
x-microsoft-antispam-prvs: <DB6PR0601MB21995250391D7648C7579219E30B0@DB6PR0601MB2199.eurprd06.prod.outlook.com>
x-ms-oob-tlc-oobclassifiers: OLM:5516;
x-forefront-prvs: 0040126723
x-forefront-antispam-report: SFV:NSPM; SFS:(10009020)(376002)(346002)(396003)(136003)(366004)(39860400002)(189003)(199004)(6916009)(2501003)(2351001)(2906002)(73956011)(66946007)(66476007)(66556008)(72206003)(6116002)(6506007)(36756003)(66446008)(64756008)(91956017)(99286004)(76116006)(54896002)(6306002)(478600001)(14454004)(6486002)(33656002)(316002)(102836004)(5640700003)(74482002)(6436002)(256004)(7736002)(6512007)(14444005)(5024004)(15974865002)(2616005)(46003)(476003)(486006)(71200400001)(83716004)(82746002)(71190400001)(3480700005)(86362001)(68736007)(58126008)(8936002)(8676002)(1730700003)(81166006)(81156014)(186003)(53936002)(66574012)(5660300002)(25786009); DIR:OUT; SFP:1101; SCL:1; SRVR:DB6PR0601MB2199; H:DB6PR0601MB2184.eurprd06.prod.outlook.com; FPR:; SPF:None; LANG:en; PTR:InfoNoRecords; MX:1; A:0;
received-spf: None (protection.outlook.com: sky.uk does not designate permitted sender hosts)
x-ms-exchange-senderadcheck: 1
x-microsoft-antispam-message-info: 57YqZkuf2Ad+rb2VZ8MjZ97kIQAcxexFrZ9pQHYmNENEqP0XPCL+RJopGIxSvmcDzUrMjzMkBOHHgB06kCeoj6gZBHk+0rkfsKXeuU+gVodcwNAV7creBub1p6Xi1aQhJMCowfkrPWyOkVLzZUllFrYlNJdcTEqeoAwP1IR4TdY8fikgMHbWUPT0QTqM9LMbHcmkkHIAV4yrs7n83h/VCJqGLeb8wtmYEz/t/uF0QVdrfL9l7mQ10Ax3iLM+9GGv+qbLaMVtrSY/6bLEVt8juyUSroPeO2rbfGZPP6dNXAQDNaTBljD2kRFRY/ZUSzUPcTuZLiip5dDtqUi6jms6Ulr9GbqG2g4rVN26B4Obh2jH9T9VZY0xHZjGciimcEhI7hEVJsJjGbIxfdAhYZHGakJWmWaicpsXO+Ft6c18xeg=
Content-Type: multipart/alternative; boundary="_000_3BD0C1E6A9374F51AB178D449D6C7036skyuk_"
MIME-Version: 1.0
X-OriginatorOrg: sky.uk
X-MS-Exchange-CrossTenant-Network-Message-Id: 8bc998a5-ee6e-4c69-e272-08d6dac695df
X-MS-Exchange-CrossTenant-originalarrivaltime: 17 May 2019 12:52:57.1260 (UTC)
X-MS-Exchange-CrossTenant-fromentityheader: Hosted
X-MS-Exchange-CrossTenant-id: 68b865d5-cf18-4b2b-82a4-a4eddb9c5237
X-MS-Exchange-CrossTenant-mailboxtype: HOSTED
X-MS-Exchange-Transport-CrossTenantHeadersStamped: DB6PR0601MB2199
Archived-At: <https://mailarchive.ietf.org/arch/msg/add/dla1XOiw86AYiLYIF7BdAFANSWA>
Subject: [Add] Googles Experimental DoH Endpoint
X-BeenThere: add@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Applications Doing DNS <add.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/add>, <mailto:add-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/add/>
List-Post: <mailto:add@ietf.org>
List-Help: <mailto:add-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/add>, <mailto:add-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 17 May 2019 12:53:05 -0000
**Reposting this here seems on topic for both doh and add ** Oh by the way I noticed this and it seems counter to the claim of DoH only running on 8.8.8.8. To keep it short I’ve removed the SSL setup step from the example. $ openssl s_client -connect search.google.com:443 -servername search.google.com … --- GET /experimental?dns=AAABAAABAAAAAAAAA3d3dwdleGFtcGxlA2NvbQAAAQAB HTTP/1.1 host: dns.google.com HTTP/1.1 200 OK Strict-Transport-Security: max-age=31536000; includeSubDomains; preload Access-Control-Allow-Origin: * Date: Tue, 14 May 2019 13:49:53 GMT Expires: Tue, 14 May 2019 13:49:53 GMT Cache-Control: private, max-age=20595 Content-Type: application/dns-message Server: HTTP server (unknown) Content-Length: 49 X-XSS-Protection: 0 X-Frame-Options: SAMEORIGIN Alt-Svc: quic=":443"; ma=2592000; v="46,44,43,39" ??wwwexamplecom? Ps]??"^C $ Tried a few more gmail.google.com, www.youtube.com, news.google.com So I guess it’s their entire web estate As the obvious thing to test Firefox seems to have no official way to do this but I suspect it would be trivial to allow it. Plus malicious applications / malware etc don’t care about rules so expect them to be using this fact already. -- Alister Winfield. Information in this email including any attachments may be privileged, confidential and is intended exclusively for the addressee. The views expressed may not be official policy, but the personal views of the originator. If you have received it in error, please notify the sender by return e-mail and delete it from your system. You should not reproduce, distribute, store, retransmit, use or disclose its contents to anyone. Please note we reserve the right to monitor all e-mail communication through our internal and external networks. SKY and the SKY marks are trademarks of Sky Limited and Sky International AG and are used under licence. Sky UK Limited (Registration No. 2906991), Sky-In-Home Service Limited (Registration No. 2067075), Sky Subscribers Services Limited (Registration No. 2340150) and Sky CP Limited (Registration No. 9513259) are direct or indirect subsidiaries of Sky Limited (Registration No. 2247735). All of the companies mentioned in this paragraph are incorporated in England and Wales and share the same registered office at Grant Way, Isleworth, Middlesex TW7 5QD
- [Add] Googles Experimental DoH Endpoint Winfield, Alister
- Re: [Add] Googles Experimental DoH Endpoint Robert Mortimer