IETF Logo Mail Archive

[DNSOP] Re: DNS, censorship, attacks and centralization

Mark Nottingham <mnot@mnot.net> Mon, 19 May 2025 23:31 UTC

Return-Path: <mnot@mnot.net>
X-Original-To: dnsop@mail2.ietf.org
Delivered-To: dnsop@mail2.ietf.org
Received: from localhost (localhost [127.0.0.1]) by mail2.ietf.org (Postfix) with ESMTP id 7E4D72A75196 for <dnsop@mail2.ietf.org>; Mon, 19 May 2025 16:31:33 -0700 (PDT)
X-Virus-Scanned: amavisd-new at ietf.org
X-Spam-Flag: NO
X-Spam-Score: -2.797
X-Spam-Level:
X-Spam-Status: No, score=-2.797 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, DKIM_VALID_EF=-0.1, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H5=0.001, RCVD_IN_MSPIKE_WL=0.001, RCVD_IN_VALIDITY_RPBL_BLOCKED=0.001, RCVD_IN_VALIDITY_SAFE_BLOCKED=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Authentication-Results: mail2.ietf.org (amavisd-new); dkim=pass (2048-bit key) header.d=mnot.net header.b="lA8o49zk"; dkim=pass (2048-bit key) header.d=messagingengine.com header.b="rvsjcPqr"
Received: from mail2.ietf.org ([166.84.6.31]) by localhost (mail2.ietf.org [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id yIjpvSi8obDy for <dnsop@mail2.ietf.org>; Mon, 19 May 2025 16:31:32 -0700 (PDT)
Received: from fout-b5-smtp.messagingengine.com (fout-b5-smtp.messagingengine.com [202.12.124.148]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange X25519 server-signature ECDSA (P-256) server-digest SHA256) (No client certificate requested) by mail2.ietf.org (Postfix) with ESMTPS id BD3E72A75189 for <dnsop@ietf.org>; Mon, 19 May 2025 16:31:32 -0700 (PDT)
Received: from phl-compute-12.internal (phl-compute-12.phl.internal [10.202.2.52]) by mailfout.stl.internal (Postfix) with ESMTP id 624301140101; Mon, 19 May 2025 19:31:32 -0400 (EDT)
Received: from phl-mailfrontend-01 ([10.202.2.162]) by phl-compute-12.internal (MEProxy); Mon, 19 May 2025 19:31:32 -0400
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=mnot.net; h=cc :cc:content-transfer-encoding:content-type:content-type:date :date:from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:subject:subject:to:to; s=fm1; t=1747697492; x=1747783892; bh=99/T30HQHgL0cD2f6zvbq0flfGYOEQJO9r7FVrSnIKk=; b= lA8o49zkYw3qqUE5iTbJakrotHERfsubRyWS5pBfvUZUl0TKvBOBZquDsG/haaoi ddxeOA15u31GyfOpRnzyLVGbAvUP3I5kjOVnUf9jUfoqgLybVospqirZtYYU5lbU argWMRdDIQXOzxBGzVqy99ZG0bR/05kiZD+EN2vrGxFUj7qIsUFQ95VrqJzVwEJC b2IFX8i3lxSNKIAodBd2orBThM8nIfTobYV/4nlStwotNtdZdbhWuYqmQ3/iV+Wl wfMzWWIE1LvR/g559ccLtEP7weapA3vIBsUnWkgXkKU9RIzRkvhRsLfGGkh9GUSc n2nPnaJ19Z3J96+6KoEJQw==
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d= messagingengine.com; h=cc:cc:content-transfer-encoding :content-type:content-type:date:date:feedback-id:feedback-id :from:from:in-reply-to:in-reply-to:message-id:mime-version :references:reply-to:subject:subject:to:to:x-me-proxy :x-me-sender:x-me-sender:x-sasl-enc; s=fm3; t=1747697492; x= 1747783892; bh=99/T30HQHgL0cD2f6zvbq0flfGYOEQJO9r7FVrSnIKk=; b=r vsjcPqrodKaoowX0cZRInYku0fPEegynyHwJnoRjqJReM9X44tkdaNxseUa3onsO Gy/NBPBldDqV94yH2aNX5ycrCs/9RSiuvJjV+SOkAP0IZsaW0wSKn6SOhkieXmyU srcjLWV29UGjMMkiidZdKCn1I7tVEXIold0mShTJ08UgyqXOGR7AkNaJIvoDGEsN WizZXd4HbvnxA5Dw0o4YgrX16Njq1CRZSKK6d8Vv4z6wZTOZulyU+zqvUe5zEN2D O+bZ2Op5zc3XpNXDm92HzHWWzzsNrcNst/e4ZzJ/uOlL4zdw044iZJU9TJfe4gkE 4lEa0zJI218pxKr6zN9QQ==
X-ME-Sender: <xms:U78raAzz7sDB9ArX0t3uKBZBPSGQA6NXwM4v13hrG3oqqsN3YhSTOw> <xme:U78raERgIJPxhUiiuDIe1QTAHkj-j4bMrQBcFkN63xJP4bI7UPhbuMe8q_wit4XjC cXgMMoBHXBQhr7ltw>
X-ME-Received: <xmr:U78raCVtVmkWnvSXtqnZdRyqsz1Y1PUD64tnhgic60znwnG-AZCgVJpNRLPJMVz_Cw4yp_iDHZOIb4mbv2yEmehrZawuOmEl808bNd2lv-Ioir3QS15i942Q>
X-ME-Proxy-Cause: gggruggvucftvghtrhhoucdtuddrgeefvddrtddtgdefvddvjedtucetufdoteggodetrf dotffvucfrrhhofhhilhgvmecuhfgrshhtofgrihhlpdggtfgfnhhsuhgsshgtrhhisggv pdfurfetoffkrfgpnffqhgenuceurghilhhouhhtmecufedttdenucenucfjughrpegtgg fuhfgjffevgffkfhfvofesthhqmhdthhdtjeenucfhrhhomhepofgrrhhkucfpohhtthhi nhhghhgrmhcuoehmnhhothesmhhnohhtrdhnvghtqeenucggtffrrghtthgvrhhnpeegtd elgfefhefgvefgjeevhfekudfgudejvdetgfelfeduueffhefhieeigfeufeenucffohhm rghinhepfihikhhiphgvughirgdrohhrghdpmhhnohhtrdhnvghtnecuvehluhhsthgvrh fuihiivgeptdenucfrrghrrghmpehmrghilhhfrhhomhepmhhnohhtsehmnhhothdrnhgv thdpnhgspghrtghpthhtohepvddpmhhouggvpehsmhhtphhouhhtpdhrtghpthhtohepsg gvmhgrshgtpeegtdhmvghtrgdrtghomhesughmrghrtgdrihgvthhfrdhorhhgpdhrtghp thhtohepughnshhophesihgvthhfrdhorhhg
X-ME-Proxy: <xmx:VL8raOgi23geUxGHYdyR59Xr568oWMQm5TRUX171knP_FPkMnpbFLg> <xmx:VL8raCARzvCOVO-bBG76Iixa3Z5sKkOicnkwxXxlFNZAsyi3ZH2VpA> <xmx:VL8raPKmhrUdIZ3-rRAqfTiccmvQcrSJweENmPMzfOeiZBywkqKepA> <xmx:VL8raJASCHoTstP1DlYcbndCObieMkqtp_XQiVTaNgjimINPvR5H9A> <xmx:VL8raKvNHlRk9e6aP9kpFHN0Vet-ohonw25YrSfgJ8Wq7qWTVX-ufkBd>
Feedback-ID: ie6694242:Fastmail
Received: by mail.messagingengine.com (Postfix) with ESMTPA; Mon, 19 May 2025 19:31:30 -0400 (EDT)
Content-Type: text/plain; charset="utf-8"
Mime-Version: 1.0 (Mac OS X Mail 16.0 \(3826.500.181.1.5\))
From: Mark Nottingham <mnot@mnot.net>
In-Reply-To: <SA1PR15MB4370A1DDFC1DDB81073084FBB39CA@SA1PR15MB4370.namprd15.prod.outlook.com>
Date: Tue, 20 May 2025 09:31:28 +1000
Content-Transfer-Encoding: quoted-printable
Message-Id: <14A397F8-85F2-4010-BAD5-FADE52B43D79@mnot.net>
References: <CAFpG3gcrWH3w-SgNuk9qx6HL2iZkpWJDRTBEtNToSf6J5mG7wQ@mail.gmail.com> <CB55AFC1-633F-47B8-9E50-063430A4E7AF@nohats.ca> <135700F9-CA5E-45FF-959F-803CF393191C@mnot.net> <SA1PR15MB4370A1DDFC1DDB81073084FBB39CA@SA1PR15MB4370.namprd15.prod.outlook.com>
To: Ben Schwartz <bemasc=40meta.com@dmarc.ietf.org>
X-Mailer: Apple Mail (2.3826.500.181.1.5)
Message-ID-Hash: IBNZSNUOR235B26XXL5UN5LELJNLKBIG
X-Message-ID-Hash: IBNZSNUOR235B26XXL5UN5LELJNLKBIG
X-MailFrom: mnot@mnot.net
X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; header-match-dnsop.ietf.org-0; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header
CC: "dnsop@ietf.org" <dnsop@ietf.org>
X-Mailman-Version: 3.3.9rc6
Precedence: list
Subject: [DNSOP] Re: DNS, censorship, attacks and centralization
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/rmdzGgplK2fDl6rDADgE9QcbYS4>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Owner: <mailto:dnsop-owner@ietf.org>
List-Post: <mailto:dnsop@ietf.org>
List-Subscribe: <mailto:dnsop-join@ietf.org>
List-Unsubscribe: <mailto:dnsop-leave@ietf.org>

Hi Ben,

That's a good point -- we need to differentiate between what the protocol provides to client software and what that software exposes to end users. 

Successful mitigation of the attacks we're talking about comes down largely to how (and when) the information is presented to users -- and finding the right way to do it is likely to take some experimentation and iteration. So, to me, constraining what appears in the protocol is not a good way to addressing these risks. Highlighting their nature and suggesting strategies is likely to be more successful.

Cheers,


> On 20 May 2025, at 12:23 am, Ben Schwartz <bemasc=40meta.com@dmarc.ietf.org> wrote:
> 
> 
> From: Mark Nottingham <mnot=40mnot.net@dmarc.ietf.org>
> 
> > First, two things that I don't _think_ are being disputed:
> 
> > 1. Surfacing censorship events to end users is desirable, because it a) avoids user confusion / misattribution of the problem, and b) allows end users to be more fully informed. This is becoming a more urgent problem, thanks to current events.
> 
> I don't necessarily view this as desirable.  Specifically, I see an important distinction between informing the user and informing the user agent.
> 
> I feel that informing the user agent is potentially desirable.  It can react in various useful ways:
> 
> * Interpreting the censorship as damage and routing around it.
> * Collecting anonymized telemetry on censorship events to produce a public report.
> * Potentially notifying the user at an appropriate level of detail.
> 
> Surfacing censorship events to the user is often difficult, inappropriate, or counterproductive, depending on factors such as the user's technical skill and the applicable legal frameworks.  I am reminded of a string of incidents in Kazakhstan [1], which were successfully resolved without any specific user messaging in client software.  Attempting to explain the precise situation to those users might have increased the risk of panic and confusion.
> 
> --Ben
> 
> [1] https://en.wikipedia.org/wiki/Kazakhstan_man-in-the-middle_attack


--
Mark Nottingham   https://www.mnot.net/

v2.31.3 | Report a Bug | By Email | System Status