[dns-privacy] PowerDNS implementation of unilateral probing
Peter van Dijk <peter.van.dijk@powerdns.com> Mon, 13 June 2022 13:58 UTC
Return-Path: <peter.van.dijk@powerdns.com>
X-Original-To: dns-privacy@ietfa.amsl.com
Delivered-To: dns-privacy@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BA85CC14F722 for <dns-privacy@ietfa.amsl.com>; Mon, 13 Jun 2022 06:58:36 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.904
X-Spam-Level:
X-Spam-Status: No, score=-1.904 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_ZEN_BLOCKED_OPENDNS=0.001, SPF_HELO_NONE=0.001, SPF_NONE=0.001, T_SCC_BODY_TEXT_LINE=-0.01, URIBL_BLOCKED=0.001, URIBL_DBL_BLOCKED_OPENDNS=0.001, URIBL_ZEN_BLOCKED_OPENDNS=0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([50.223.129.194]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id uWaq8ca2kr1U for <dns-privacy@ietfa.amsl.com>; Mon, 13 Jun 2022 06:58:31 -0700 (PDT)
Received: from mx3.open-xchange.com (mx3.open-xchange.com [87.191.57.183]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 6D13BC1595E6 for <dns-privacy@ietf.org>; Mon, 13 Jun 2022 06:58:31 -0700 (PDT)
Received: from imap.open-xchange.com (imap.open-xchange.com [86.85.149.247]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (Client did not present a certificate) by mx3.open-xchange.com (Postfix) with ESMTPSA id 0B3D46A149; Mon, 13 Jun 2022 15:58:28 +0200 (CEST)
Received: from plato.home ([86.85.149.247]) by imap.open-xchange.com with ESMTPSA id XTV+AIRCp2KHFgAA3c6Kzw (envelope-from <peter.van.dijk@powerdns.com>); Mon, 13 Jun 2022 15:58:28 +0200
Message-ID: <d9fedb8d0038a7e5f1ffa7b57611a5958837f189.camel@powerdns.com>
From: Peter van Dijk <peter.van.dijk@powerdns.com>
To: dns-privacy@ietf.org
Date: Mon, 13 Jun 2022 15:58:27 +0200
Organization: PowerDNS.COM B.V.
Content-Type: text/plain; charset="UTF-8"
User-Agent: Evolution 3.38.3-1
MIME-Version: 1.0
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dns-privacy/kTyxk9CrT-rEIbW5RutARrkJ-Sw>
Subject: [dns-privacy] PowerDNS implementation of unilateral probing
X-BeenThere: dns-privacy@ietf.org
X-Mailman-Version: 2.1.39
Precedence: list
List-Id: Addition of privacy to the DNS protocol <dns-privacy.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dns-privacy/>
List-Post: <mailto:dns-privacy@ietf.org>
List-Help: <mailto:dns-privacy-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dns-privacy>, <mailto:dns-privacy-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 13 Jun 2022 13:58:36 -0000
Hello, we released PowerDNS Recursor 4.7.0 [1] with an implementation of unilateral probing for ADoT. The implementation does not follow the existing draft to the letter, but was strongly inspired by it. Otto Moerbeek wrote a nice article about the implementation [2]. We welcome any feedback on the implementation and the article, and we hope that having this implementation out there will help all of us gain the necessary operational experience to progress the working group's goals. (Jerry Lundström already found a bug, which has been addressed, and the fix will be released in version 4.7.1 [3]) [1] https://blog.powerdns.com/2022/05/30/powerdns-recursor-4-7-0-released/ [2] https://blog.powerdns.com/2022/06/13/probing-dot-support-of-authoritative-servers-just-try-it/ [3] https://github.com/PowerDNS/pdns/pull/11692 Kind regards, -- Peter van Dijk PowerDNS.COM BV - https://www.powerdns.com/
- [dns-privacy] PowerDNS implementation of unilater… Peter van Dijk