Re: [DNSOP] EDNS0 clientID is a wider-internet question

Paul Vixie <paul@redbarn.org> Wed, 26 July 2017 21:01 UTC

Return-Path: <paul@redbarn.org>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 2E1CF131CF3 for <dnsop@ietfa.amsl.com>; Wed, 26 Jul 2017 14:01:41 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.902
X-Spam-Level:
X-Spam-Status: No, score=-1.902 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RP_MATCHES_RCVD=-0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Yb7zMc3_s4by for <dnsop@ietfa.amsl.com>; Wed, 26 Jul 2017 14:01:39 -0700 (PDT)
Received: from family.redbarn.org (family.redbarn.org [IPv6:2001:559:8000:cd::5]) (using TLSv1.2 with cipher AECDH-AES256-SHA (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 7D426131C2E for <dnsop@ietf.org>; Wed, 26 Jul 2017 14:01:39 -0700 (PDT)
Received: from [10.8.193.39] (unknown [136.179.21.80]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client did not present a certificate) by family.redbarn.org (Postfix) with ESMTPSA id 5310E61FF3; Wed, 26 Jul 2017 21:01:38 +0000 (UTC)
Message-ID: <59790330.4090502@redbarn.org>
Date: Wed, 26 Jul 2017 14:01:36 -0700
From: Paul Vixie <paul@redbarn.org>
User-Agent: Postbox 5.0.16 (Windows/20170718)
MIME-Version: 1.0
To: Robert Edmonds <edmonds@mycre.ws>
CC: dnsop@ietf.org
References: <CAKr6gn1mZ7VTfM_wtpFX-G95wg-bWRA_YciZScFvr-YX8eYdWg@mail.gmail.com> <CAPt1N1nutxneiZg1JR90O5vRXVs+0WHvRtHpwCRyn4bXpf6g4A@mail.gmail.com> <CAL9jLaZrsiGZUPJzT1bZG-K2mTt3wP=x05-_Qp=rRh8uaBjS4g@mail.gmail.com> <5D73941C-B108-4A14-AEE5-7A28BCA94373@nohats.ca> <8d27cf2a-a883-7186-11bb-eeacd0bce68c@eff.org> <5976FC55.10301@redbarn.org> <alpine.LRH.2.21.1707250412390.19091@bofh.nohats.ca> <59779B68.2000906@redbarn.org> <20170725204158.isyxgyb7l5d5degr@mycre.ws> <5978F932.2000102@redbarn.org> <20170726203530.ftyykxxlr44jnjtr@mycre.ws>
In-Reply-To: <20170726203530.ftyykxxlr44jnjtr@mycre.ws>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/fp9pukyaQSTum_2AVwezdu4bSmU>
Subject: Re: [DNSOP] EDNS0 clientID is a wider-internet question
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 26 Jul 2017 21:01:41 -0000


Robert Edmonds wrote:
>> also, there's an app for that:
>>
>> https://play.google.com/store/search?q=dns%20changer%20no%20root
>
> Yes, you and I are well aware that there are apps and howtos for
> changing DNS settings available online. If you can find, read, and
> execute one of those guides -- congrats, you're not an average user.

i think that when 8.8.8.8 started getting spray painted on walls during 
political upheaval, the average user's capabilities were changed.

see also the GFW which has made bypass expertise common within china.

see also italy, where the gov't mandated dns-level filtering by all 
isp's of known-to-not-pay-taxes online gambling sites. gamblers shared 
information about what 8.8.8.8 was and how to reach it, in online forums.

cussedness can be predicted, and in this case, relied upon. people learn 
what they have to learn. the average, can change.

-- 
P Vixie