[DNSOP] Blog Post: DNS over TLS support in Android P Developer Preview
Warren Kumari <warren@kumari.net> Fri, 13 April 2018 19:50 UTC
Return-Path: <warren@kumari.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id E7601127AD4 for <dnsop@ietfa.amsl.com>; Fri, 13 Apr 2018 12:50:38 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.911
X-Spam-Level:
X-Spam-Status: No, score=-1.911 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=kumari-net.20150623.gappssmtp.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id je9DSAB5Xlso for <dnsop@ietfa.amsl.com>; Fri, 13 Apr 2018 12:50:37 -0700 (PDT)
Received: from mail-wr0-x22b.google.com (mail-wr0-x22b.google.com [IPv6:2a00:1450:400c:c0c::22b]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 0112C127978 for <dnsop@ietf.org>; Fri, 13 Apr 2018 12:50:36 -0700 (PDT)
Received: by mail-wr0-x22b.google.com with SMTP id d1so10856117wrj.13 for <dnsop@ietf.org>; Fri, 13 Apr 2018 12:50:36 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=kumari-net.20150623.gappssmtp.com; s=20150623; h=mime-version:from:date:message-id:subject:to; bh=2hVOpEd9csx6RX1eUQXfctOxy3TXag0jFTVbBRM7+s8=; b=GdZ7d3VYWeUIptO6UFMdyoemJ5nGkbyTdhtwtvvQg6HbeBwEv8K9Dm2nWnJv6DutFc fHeH0qmL3xNqhoBElKQNV1v4NfXR40ZaA2wuXvZt2O1uI43jYr7KgOOeBexS0VNhxNrA yT8RLKGW+lv7v9bHFNoC8ZxYpW+aBct8V9nQqCccOS4+gZb8qgIkfoD40+J3nWgO2+Jl LJIKkRroygAn7l4p+QScnVzst+HmY+r5WsWR7RAEVAM139JmTvabrnG+3pP/k7NJHX8x lmeUH0W/MFPIRhGwMDQX9r4U9+QWz6txpclhdOcpouUurxQ0BHPxqiLIMZquzeTg+pxA npFg==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:from:date:message-id:subject:to; bh=2hVOpEd9csx6RX1eUQXfctOxy3TXag0jFTVbBRM7+s8=; b=VRRhJtEszZQPr+fz0/osJVpUUwvaIVIZbn3i2ex4oRI042XjA+SlvTSojLjTZeo6mX RxzUYvZrA7zSH/4DwS8ldB/LDdRZU2Tv3flKy/IU08tXjX1OvXPVcdYkfKVZ6oKBUGNP LphWbWUWLaxOTSqB/2GthSuNm7aWBpE4oN5YyXaUHqKRo/UM76RCQhy5/XCGrpNTMEtC 64CSyOCA8S6UuAr/QdMC/LU+el5deTT3fK3OPBVJKoYJGyoc58GSzbxD2h4Xp4l7wvbL prBu2upFJ36aLmYB/O3cTrycI7fDC03G2gGSUfwSGNwjpjUJ0EVTzdOAkjpTsOvz3eEr ygbQ==
X-Gm-Message-State: ALQs6tD2sPJUVIgwsPvVPV4w5CISd6HDweH/nvLHYAso0x400MWctJH3 bZHDm7V6jh0IYBlHuyUQ9hiPiqSy3bACqlC67DuCGNIlzD4=
X-Google-Smtp-Source: AIpwx493b4K1g6WvOoa6cY2FSrkALH73I8GbLEfV5PbnfGzI+QDPripngUVI+Recyvq1xmJRBHZBSt4UyIYx2A+fQ+o=
X-Received: by 10.223.225.4 with SMTP id d4mr4433635wri.24.1523649034821; Fri, 13 Apr 2018 12:50:34 -0700 (PDT)
MIME-Version: 1.0
Received: by 10.223.226.76 with HTTP; Fri, 13 Apr 2018 12:49:54 -0700 (PDT)
From: Warren Kumari <warren@kumari.net>
Date: Fri, 13 Apr 2018 15:49:54 -0400
Message-ID: <CAHw9_iKax=0hGwAj_X0m0Dqckutb+qMtMwnHRj54qicSsYKk0w@mail.gmail.com>
To: dnsop <dnsop@ietf.org>
Content-Type: text/plain; charset="UTF-8"
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/_Np4YA_lhhrNuDbcfsvAP5ZZ-74>
Subject: [DNSOP] Blog Post: DNS over TLS support in Android P Developer Preview
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 13 Apr 2018 19:50:39 -0000
Hi all, As Erik Kline and Ben Schwartz seem to be too modest to toot their own horn, I'll do it for them: https://android-developers.googleblog.com/2018/04/dns-over-tls-support-in-android-p.html Snippet from the above: "The Android P Developer Preview includes built-in support for DNS over TLS. We added a Private DNS mode to the Network & internet settings. By default, devices automatically upgrade to DNS over TLS if a network's DNS server supports it. But users who don't want to use DNS over TLS can turn it off." W (Also posted to dprive) -- I don't think the execution is relevant when it was obviously a bad idea in the first place. This is like putting rabid weasels in your pants, and later expressing regret at having chosen those particular rabid weasels and that pair of pants. ---maf
- [DNSOP] Blog Post: DNS over TLS support in Androi… Warren Kumari
- Re: [DNSOP] Blog Post: DNS over TLS support in An… Marek Vavruša
- Re: [DNSOP] Blog Post: DNS over TLS support in An… Sara Dickinson