IETF Logo Mail Archive

Re: [DNSOP] DNS privacy draft

Warren Kumari <warren@kumari.net> Wed, 04 December 2013 02:24 UTC

Return-Path: <warren@kumari.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (ietfa.amsl.com [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id BD68C1AE00F for <dnsop@ietfa.amsl.com>; Tue, 3 Dec 2013 18:24:39 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001] autolearn=ham
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 38tbhB9jzO9Q for <dnsop@ietfa.amsl.com>; Tue, 3 Dec 2013 18:24:38 -0800 (PST)
Received: from vimes.kumari.net (smtp1.kumari.net [204.194.22.1]) by ietfa.amsl.com (Postfix) with ESMTP id 348FA1ADFE1 for <dnsop@ietf.org>; Tue, 3 Dec 2013 18:24:37 -0800 (PST)
Received: from [192.168.1.153] (unknown [66.84.81.107]) by vimes.kumari.net (Postfix) with ESMTPSA id 36D201B401BA; Tue, 3 Dec 2013 21:24:34 -0500 (EST)
Content-Type: text/plain; charset="us-ascii"
Mime-Version: 1.0 (Mac OS X Mail 6.6 \(1510\))
From: Warren Kumari <warren@kumari.net>
In-Reply-To: <20131203222016.GE5689@sources.org>
Date: Tue, 03 Dec 2013 21:24:27 -0500
Content-Transfer-Encoding: 7bit
Message-Id: <01F8E35E-81DE-43B0-8307-DDDADA4DD3EA@kumari.net>
References: <1ACF9F7F-8D5B-4671-8DD4-213A984CBB3F@vpnc.org> <20131127153627.GA30675@nic.fr> <F033D08E-E08F-41FB-B6B1-C3B0F3417C94@vpnc.org> <20131201200931.GA31672@sources.org> <837E4222-85CD-47E3-B44F-5735F3D109EF@vpnc.org> <AC03AF8C-1921-404F-B90B-43B7B6EF14CA@nominum.com> <AD690D03-DE67-4B30-B0BB-93EA072EF1B8@vpnc.org> <3984C2A6-D6A6-4EFB-A484-67F6D92A1646@ucd.ie> <20131202075750.GA28341@nic.fr> <B05D353D-BB98-4CC4-9FF8-CEBDA459E200@kumari.net> <20131203222016.GE5689@sources.org>
To: Stephane Bortzmeyer <bortzmeyer@nic.fr>
X-Mailer: Apple Mail (2.1510)
Cc: dnsop WG <dnsop@ietf.org>
Subject: Re: [DNSOP] DNS privacy draft
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.15
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <http://www.ietf.org/mail-archive/web/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 04 Dec 2013 02:24:40 -0000

On Dec 3, 2013, at 5:20 PM, Stephane Bortzmeyer <bortzmeyer@nic.fr> wrote:

> On Mon, Dec 02, 2013 at 01:13:26PM -0500,
> Warren Kumari <warren@kumari.net> wrote 
> a message of 35 lines which said:
> 
>>> OK. And do note "chaff" may be a by-product of
>>> draft-wkumari-dnsop-hammer.
>> 
>> Um, please explain.
>> 
>> Hammer (and the various similar, actually implemented things) simply
>> trigger lookups a few seconds before the TTL would naturally expire
>> *in response to an incoming query*.
> 
> OK, I was too fast, sorry. Hammer itself does not scramble the stream
> of requests. So, I withdraw the reference to Hammer.
> 

Okey dokey (and the hackles go down :-P)

> Still, sending gratuitous queries, without an incoming query and
> without waiting for the expiration, may be a good strategy for a
> resolver to make traffic analysis more difficult for the eavesdropper
> (or for the authoritative name servers).
> 

--
The plural of anecdote is not evidence.
        -- Bill Lockyer, California Attorney General

v2.23.0 | Report a Bug | By Email