Re: [Doh] Running code

manu tman <> Wed, 17 January 2018 07:51 UTC

Return-Path: <>
Received: from localhost (localhost []) by (Postfix) with ESMTP id B4C9C12F4BD for <>; Tue, 16 Jan 2018 23:51:44 -0800 (PST)
X-Virus-Scanned: amavisd-new at
X-Spam-Flag: NO
X-Spam-Score: -2.448
X-Spam-Status: No, score=-2.448 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, FREEMAIL_ENVFROM_END_DIGIT=0.25, FREEMAIL_FROM=0.001, HTML_MESSAGE=0.001, RCVD_IN_DNSWL_LOW=-0.7, SPF_PASS=-0.001, URIBL_BLOCKED=0.001] autolearn=ham autolearn_force=no
Authentication-Results: (amavisd-new); dkim=pass (2048-bit key)
Received: from ([]) by localhost ( []) (amavisd-new, port 10024) with ESMTP id OBNsdwJYuoob for <>; Tue, 16 Jan 2018 23:51:42 -0800 (PST)
Received: from ( [IPv6:2a00:1450:4010:c07::22f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by (Postfix) with ESMTPS id 80F7E12F3D0 for <>; Tue, 16 Jan 2018 23:51:42 -0800 (PST)
Received: by with SMTP id x196so671515lfd.12 for <>; Tue, 16 Jan 2018 23:51:42 -0800 (PST)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=mime-version:in-reply-to:references:from:date:message-id:subject:to :cc; bh=1Slq7vC46e8+sECUDz6IXq7iw6YUj1fjhRbXuo0cbdM=; b=jItH6oof0QFI0dBtcDpRPaix+bCouc4SqnAZ52b5YuO02laoHfMPzU6AyemsVIxmZJ EZ62SN0rKsUIwI0WvjOZyQPSuihwiHGL9DisIy0JMSGSMnhWKem71mRat7NJyptnrh+M kDw3sJ2bi1FNgIIROs/Wk+ZQwoCzWlh58mVKZ1i5CDOvZlYHMfa/dyfZZUCpmc5+gV4B r/FQwHy95cFZuW0SFHRMdG05GEItTIq3bP9PeIltMVBOsppR/yLj35CGt6oHENXHisxt yUSsMDI6x51EInHaU/JwP6tjpZqC5G4eVs9+D2arBrX0Dfo6ZS1mPXivuWaq6QrphLDU xwdQ==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed;; s=20161025; h=x-gm-message-state:mime-version:in-reply-to:references:from:date :message-id:subject:to:cc; bh=1Slq7vC46e8+sECUDz6IXq7iw6YUj1fjhRbXuo0cbdM=; b=URgJafJXet3T8tUzPtbqCE07EnQPVm7YEkNof5bHFgzBbtPJYJRdc+mfsB2EaCVtpX 79G6wXIHZoTsIYHMjua/SIkI1Ca4OT/5Emt3+9uQjHJPFpsuj0PnF65ZyIhDve+Y91Sf a2wUpsifrdTqppxpN9ehI3Jh47GMIKO3M5tmHy+JgL6bnC8ig48zuc98Ske+3CwgfRjH h2R6LG5oZLWNk2ZeONOXIf+J5O9/6IEufBY1oOfcMvbXVco5ouBtf81MOEwYXbkppjDD UVstVTkhr6zBLKn9TdeOo5zzyCxQF2lL8Mz47KMtY7dCae9j0RwGylh3OTFCLHyJinvt +ACA==
X-Gm-Message-State: AKwxytelN5ezVUDPVPEkv0UEDJ1N15KsMVVQ/qbmJt17Vc1HxPEYb1yP EyvzDaCLuxEUfKUYQaMOYuEMMTY2smoSmExjuubTQPL4
X-Google-Smtp-Source: ACJfBotlrA04jZejziigArRTbYS3E3nwunr1IY8JEVVgtnoyH+rU7fsoYTaWevgX/LFAItp4kPDAyGmH1Bvy1Fdknt8=
X-Received: by with SMTP id i133mr11192930lfg.137.1516175500603; Tue, 16 Jan 2018 23:51:40 -0800 (PST)
MIME-Version: 1.0
Received: by with HTTP; Tue, 16 Jan 2018 23:51:39 -0800 (PST)
In-Reply-To: <>
References: <> <> <>
From: manu tman <>
Date: Tue, 16 Jan 2018 23:51:39 -0800
Message-ID: <>
To: Ben Schwartz <>
Content-Type: multipart/alternative; boundary="001a11400d2c2174ce0562f41e5f"
Archived-At: <>
Subject: Re: [Doh] Running code
X-Mailman-Version: 2.1.22
Precedence: list
List-Id: DNS Over HTTPS <>
List-Unsubscribe: <>, <>
List-Archive: <>
List-Post: <>
List-Help: <>
List-Subscribe: <>, <>
X-List-Received-Date: Wed, 17 Jan 2018 07:51:45 -0000

On Thu, Jan 11, 2018 at 12:19 PM, manu tman <> wrote:

> Following up on Ben's announcement of a "publicly" available DOH server, I
> brushed up some of the work I did during IETF 100 Hackathon and pushed the
> changes to .

Some follow ups here....

I just pushed doh-proxy v0.0.2 which adds a few more feature:

- updated doc at I would
appreciate people testing, going over the doc and providing some feedback.
- The stub will now perform multiple queries over the same HTTP2 connection
and therefore greatly improve latency. The stub is still HTTP2 only and I
dont think it will do anything else for the coming future.
- added doh-httpproxy: This is suppose to run behind a reverse proxy, a
good way to easily scale python, run the script without caring about
specific privileges and dropping them later and also a way move TLS
termination and properly handling HTTP2 to the reverse proxy so DOH proxy
does not have to deal with it.