[dns-privacy] Google Public DNS redirected through BGP

Stephane Bortzmeyer <bortzmeyer@nic.fr> Mon, 17 March 2014 11:58 UTC

Return-Path: <bortzmeyer@nic.fr>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com []) by ietfa.amsl.com (Postfix) with ESMTP id 2CB251A03F5 for <dns-privacy@ietfa.amsl.com>; Mon, 17 Mar 2014 04:58:18 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9] autolearn=ham
Received: from mail.ietf.org ([]) by localhost (ietfa.amsl.com []) (amavisd-new, port 10024) with ESMTP id bHzqm1YQK6uE for <dns-privacy@ietfa.amsl.com>; Mon, 17 Mar 2014 04:58:16 -0700 (PDT)
Received: from mail.bortzmeyer.org (aetius.bortzmeyer.org [IPv6:2001:4b98:dc0:41:216:3eff:fece:1902]) by ietfa.amsl.com (Postfix) with ESMTP id 074781A03D3 for <dns-privacy@ietf.org>; Mon, 17 Mar 2014 04:58:15 -0700 (PDT)
Received: by mail.bortzmeyer.org (Postfix, from userid 10) id 682F93B7FC; Mon, 17 Mar 2014 11:58:04 +0000 (UTC)
Received: by mail.sources.org (Postfix, from userid 1000) id 8A688CBA43; Mon, 17 Mar 2014 12:54:53 +0100 (CET)
Date: Mon, 17 Mar 2014 12:54:53 +0100
From: Stephane Bortzmeyer <bortzmeyer@nic.fr>
To: dns-privacy@ietf.org
Message-ID: <20140317115453.GA5548@sources.org>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
X-Transport: UUCP rules
X-Operating-System: Debian GNU/Linux 7.3
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: http://mailarchive.ietf.org/arch/msg/dns-privacy/BLFrSskpkenaZiP5tZxProtXCoI
Subject: [dns-privacy] Google Public DNS redirected through BGP
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 17 Mar 2014 11:58:18 -0000


What's the link with DNS privacy? It's an example on a possible
threat when you use a public DNS resolver without authentication. I do
not know the motivactions of the attacker (it may have been a simple
fat-fingering) but such a BGP hijacking could be used to spy on Google
Public DNS traffic.

See also <http://thehackernews.com/2014/03/google-public-dns-server-traffic.html>
(confused explanations at the end)