Re: [Doh] [Dnsmasq-discuss] Implementation of DOH in dnsmasq
Geert Stappers <stappers@stappers.nl> Wed, 20 June 2018 08:58 UTC
Return-Path: <stappers@stappers.nl>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id F161012D7F8 for <doh@ietfa.amsl.com>; Wed, 20 Jun 2018 01:58:01 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.901
X-Spam-Level:
X-Spam-Status: No, score=-1.901 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id XxV4nCnHFGXv for <doh@ietfa.amsl.com>; Wed, 20 Jun 2018 01:57:59 -0700 (PDT)
Received: from gpm.stappers.nl (gpm.stappers.nl [82.161.218.215]) by ietfa.amsl.com (Postfix) with ESMTP id 9A96D124BE5 for <doh@ietf.org>; Wed, 20 Jun 2018 01:57:59 -0700 (PDT)
Received: by gpm.stappers.nl (Postfix, from userid 1000) id 17866304031; Wed, 20 Jun 2018 10:57:57 +0200 (CEST)
Date: Wed, 20 Jun 2018 10:57:56 +0200
From: Geert Stappers <stappers@stappers.nl>
To: Nicolas Cavallari <Nicolas.Cavallari@green-communications.fr>, Please send any replies to the DoH mailing list at <doh@ietf.org>
Cc: Kurt H Maier <khm@sciops.net>, Mateusz Jo??czyk <mat.jonczyk@o2.pl>, dnsmasq-discuss@lists.thekelleys.org.uk
Message-ID: <20180620085756.GY30489@gpm.stappers.nl>
References: <360883b6-2d1a-a68b-81a2-c7902e29e0f2@o2.pl> <20180614203224.GA45519@wopr> <7da6219a-9ceb-4563-5077-116b6dec6f96@green-communications.fr>
MIME-Version: 1.0
Content-Type: text/plain; charset="us-ascii"
Content-Disposition: inline
In-Reply-To: <7da6219a-9ceb-4563-5077-116b6dec6f96@green-communications.fr>
User-Agent: Mutt/1.5.21 (2010-09-15)
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/9R6K_-5PovOVHFVEsZ7XlyK_wrE>
X-Mailman-Approved-At: Wed, 20 Jun 2018 10:19:05 -0700
Subject: Re: [Doh] [Dnsmasq-discuss] Implementation of DOH in dnsmasq
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.26
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 20 Jun 2018 08:59:32 -0000
On Wed, Jun 20, 2018 at 10:11:53AM +0200, Nicolas Cavallari wrote: > On 14/06/2018 22:32, Kurt H Maier wrote: > > On Thu, Jun 14, 2018 at 09:38:42PM +0200, Mateusz Jo??czyk wrote: > >> > >> How difficult would it be to add support to DNS over HTTP/2.0 in dnsmasq, for > >> example in constrained environments like home routers? > >> > > > > This should be handled with a wrapper program. HTTP/2.0 is an enormous > > and ill-defined specification and it would not be appropriate to bolt it > > directly into dnsmasq. A dedicated HTTP/2.0 daemon can talk to dnsmasq > > on the backend to provide this service. Home routers are not > > particularly constrained in this regard, since they generally have web > > services running to begin with. > > It's much more than that. To be secure, TLS requires time, entropy and a CA > list. Many home routers fails at having all three, or require the DNS to get > time and CAs... > > >> Please send any replies to the DoH mailing list at <doh@ietf.org>. > > > > Why? > > Because by doing so you will be subjected to the various IETF policies that > applies to anyone participating on the IETF mailing list, which includes > copyright grants, patents disclosure and other things that should be read by a > lawyer. > No new text, just doing the } Please send any replies to the DoH mailing list at <doh@ietf.org>. Groeten Geert Stappers Subscriber of mailinglist dnsmasq-discuss@lists.thekelleys.org.uk -- Leven en laten leven
- Re: [Doh] [Dnsmasq-discuss] Implementation of DOH… Geert Stappers
- [Doh] Implementation of DOH in dnsmasq Mateusz Jończyk
- [Doh] [Dnsmasq-discuss] Implementation of DOH in … Mateusz Jończyk