Re: [DNSOP] EDNS0 clientID is a wider-internet question

Robert Edmonds <edmonds@mycre.ws> Wed, 26 July 2017 20:35 UTC

Return-Path: <edmonds@mycre.ws>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 4A12C13146C for <dnsop@ietfa.amsl.com>; Wed, 26 Jul 2017 13:35:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.903
X-Spam-Level:
X-Spam-Status: No, score=-1.903 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001, SPF_HELO_PASS=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id sGI0ZB-vzDZE for <dnsop@ietfa.amsl.com>; Wed, 26 Jul 2017 13:35:31 -0700 (PDT)
Received: from mycre.ws (mycre.ws [45.33.102.105]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 37E8112FEE2 for <dnsop@ietf.org>; Wed, 26 Jul 2017 13:35:31 -0700 (PDT)
Received: by chase.mycre.ws (Postfix, from userid 1000) id 910E512C18AB; Wed, 26 Jul 2017 16:35:30 -0400 (EDT)
Date: Wed, 26 Jul 2017 16:35:30 -0400
From: Robert Edmonds <edmonds@mycre.ws>
To: Paul Vixie <paul@redbarn.org>
Cc: dnsop@ietf.org
Message-ID: <20170726203530.ftyykxxlr44jnjtr@mycre.ws>
References: <CAKr6gn1mZ7VTfM_wtpFX-G95wg-bWRA_YciZScFvr-YX8eYdWg@mail.gmail.com> <CAPt1N1nutxneiZg1JR90O5vRXVs+0WHvRtHpwCRyn4bXpf6g4A@mail.gmail.com> <CAL9jLaZrsiGZUPJzT1bZG-K2mTt3wP=x05-_Qp=rRh8uaBjS4g@mail.gmail.com> <5D73941C-B108-4A14-AEE5-7A28BCA94373@nohats.ca> <8d27cf2a-a883-7186-11bb-eeacd0bce68c@eff.org> <5976FC55.10301@redbarn.org> <alpine.LRH.2.21.1707250412390.19091@bofh.nohats.ca> <59779B68.2000906@redbarn.org> <20170725204158.isyxgyb7l5d5degr@mycre.ws> <5978F932.2000102@redbarn.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <5978F932.2000102@redbarn.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/HOzSEyRwkmAFQj_mBeKqMlhIgfg>
Subject: Re: [DNSOP] EDNS0 clientID is a wider-internet question
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Jul 2017 20:35:33 -0000

Paul Vixie wrote:
> Robert Edmonds wrote:
> > Paul Vixie wrote:
> ...
> > > some of run our own rdns. some use vpn's. some use opendns or similar.
> > 
> > The internet now has billions of users. With the possible exception of
> > OpenDNS who have gone to admirable lengths to populate their knowledge
> > base with device-specific configuration instructions [0], I don't think
> > any of the choices you've listed are available to the "average enduser",
> > who almost by definition lacks the specialized technical knowledge
> > needed to select an alternative DNS resolution provider.
> 
> italy's experience in blocking unlicensed online gambling sites proved
> otherwise, as would would SOPA had it passed. any rDNS service that blocks
> lookups in a way that does not align with a user's interests, will not be
> used, other than to locate the nec'y bypass recipes. most of those recipes
> do not require deep technical knowledge.
> 
> a minute or so of searching turned up these:
> 
> https://www.howtogeek.com/167533/the-ultimate-guide-to-changing-your-dns-server/
> 
> https://support.hidemyass.com/hc/en-us/articles/202720776-Changing-your-DNS-settings-on-Windows-Mac-Android-iOS-Linux
> 
> also, there's an app for that:
> 
> https://play.google.com/store/search?q=dns%20changer%20no%20root

Yes, you and I are well aware that there are apps and howtos for
changing DNS settings available online. If you can find, read, and
execute one of those guides -- congrats, you're not an average user.

-- 
Robert Edmonds