Re: [DNSOP] NSA says don't use public DNS or DoH servers
Wes Hardaker <wjhns1@hardakers.net> Thu, 21 January 2021 23:36 UTC
Return-Path: <wjhns1@hardakers.net>
X-Original-To: dnsop@ietfa.amsl.com
Delivered-To: dnsop@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 400AF3A0D2B for <dnsop@ietfa.amsl.com>; Thu, 21 Jan 2021 15:36:48 -0800 (PST)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -0.75
X-Spam-Level:
X-Spam-Status: No, score=-0.75 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001, URIBL_BLOCKED=0.001, URI_DOTEDU=1.149] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id YfknwvAVDwgz for <dnsop@ietfa.amsl.com>; Thu, 21 Jan 2021 15:36:47 -0800 (PST)
Received: from mail.hardakers.net (mail.hardakers.net [168.150.192.181]) (using TLSv1.2 with cipher ADH-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 9CC3D3A0D58 for <dnsop@ietf.org>; Thu, 21 Jan 2021 15:36:46 -0800 (PST)
Received: from localhost (unknown [10.0.0.3]) by mail.hardakers.net (Postfix) with ESMTPA id 8F6E120CD3; Thu, 21 Jan 2021 15:36:41 -0800 (PST)
From: Wes Hardaker <wjhns1@hardakers.net>
To: John Levine <johnl@taugh.com>
Cc: dnsop@ietf.org
References: <20210118212720.5E3806B53EC8@ary.qy>
Date: Thu, 21 Jan 2021 15:36:41 -0800
In-Reply-To: <20210118212720.5E3806B53EC8@ary.qy> (John Levine's message of "18 Jan 2021 16:27:20 -0500")
Message-ID: <ybl8s8lhng6.fsf@w7.hardakers.net>
User-Agent: Gnus/5.13 (Gnus v5.13) Emacs/27.1 (gnu/linux)
MIME-Version: 1.0
Content-Type: text/plain
Archived-At: <https://mailarchive.ietf.org/arch/msg/dnsop/y5bV9tEaBpK9Lqo-rEgumNcftrc>
Subject: Re: [DNSOP] NSA says don't use public DNS or DoH servers
X-BeenThere: dnsop@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: IETF DNSOP WG mailing list <dnsop.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/dnsop>, <mailto:dnsop-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/dnsop/>
List-Post: <mailto:dnsop@ietf.org>
List-Help: <mailto:dnsop-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/dnsop>, <mailto:dnsop-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 21 Jan 2021 23:36:54 -0000
"John Levine" <johnl@taugh.com> writes: > They think DoH is swell, but not when it bypasses security controls > and leaks info to random outside people At least 15% of network operators seem to agree. https://www.isi.edu/~hardaker/news/20191120-canary-domain-measuring.html -- Wes Hardaker USC/ISI
- [DNSOP] NSA says don't use public DNS or DoH serv… John Levine
- Re: [DNSOP] NSA says don't use public DNS or DoH … Wes Hardaker
- Re: [DNSOP] NSA says don't use public DNS or DoH … Paul Vixie
- Re: [DNSOP] NSA says don't use public DNS or DoH … Tom Pusateri
- Re: [DNSOP] NSA says don't use public DNS or DoH … Paul Vixie
- Re: [DNSOP] NSA says don't use public DNS or DoH … Vladimír Čunát
- Re: [DNSOP] NSA says don't use public DNS or DoH … Stephane Bortzmeyer
- Re: [DNSOP] NSA says don't use public DNS or DoH … Michael Richardson