Re: [Doh] DoT and DoH at Cambridge
Erik Kline <ek@google.com> Thu, 06 September 2018 09:59 UTC
Return-Path: <ek@google.com>
X-Original-To: doh@ietfa.amsl.com
Delivered-To: doh@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 0BFC3130DC8 for <doh@ietfa.amsl.com>; Thu, 6 Sep 2018 02:59:57 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -17.51
X-Spam-Level:
X-Spam-Status: No, score=-17.51 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, ENV_AND_HDR_SPF_MATCH=-0.5, RCVD_IN_DNSWL_NONE=-0.0001, SPF_PASS=-0.001, T_DKIMWL_WL_MED=-0.01, URIBL_BLOCKED=0.001, USER_IN_DEF_DKIM_WL=-7.5, USER_IN_DEF_SPF_WL=-7.5] autolearn=ham autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (2048-bit key) header.d=google.com
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 1e1iVoV0plnV for <doh@ietfa.amsl.com>; Thu, 6 Sep 2018 02:59:55 -0700 (PDT)
Received: from mail-wm0-x231.google.com (mail-wm0-x231.google.com [IPv6:2a00:1450:400c:c09::231]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 01C54124D68 for <doh@ietf.org>; Thu, 6 Sep 2018 02:59:54 -0700 (PDT)
Received: by mail-wm0-x231.google.com with SMTP id b19-v6so10798425wme.3 for <doh@ietf.org>; Thu, 06 Sep 2018 02:59:54 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20161025; h=mime-version:references:in-reply-to:from:date:message-id:subject:to :cc; bh=QDplUVNBwmc+zDjxoc5oKb+CHdG4j/3fXrQvtLi4JNU=; b=rFmXzNyi55E3wCY/dVGY6KhwJCIJK0zuFWD39r9i4HjZ96qPyLfFUeajgP+variSUi NWc5JeBzlGRTCNTsIEdVTzAyJws5fULQcJEtfBWbpCKoaxgOd3Kw1QtoWt0g9Hw6C89I EF3wXOvu8VwNF/MRE7PKia8T/Nwi9rY/kQvFafS6RXQ65qygPqCcQXABj2lRWt4MEx7i o8r6YPbQuWjIqqwBYrqH+kjQnT34xR3Rk8j8TkAwrhMGGfnoUwNhjuxkX2HX832rse6a 98itQKKWPXDch8RxTl7G9SQeir3a97O4AaIQm7ikG0P6WFP2sgULQf0RAnRoXivQxz29 ThfA==
X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:mime-version:references:in-reply-to:from:date :message-id:subject:to:cc; bh=QDplUVNBwmc+zDjxoc5oKb+CHdG4j/3fXrQvtLi4JNU=; b=heA4UhjSmf7PBZB4cVUOao/SOhVKQRRzD/OFHV6d/W4P+jXex7BhVBeVYDzvfGdIIS WfU4XZKDAuCrh+GHXStjntwYARIVjcYHJ2BlyD937i97/OzNgpFw7Yaafs6HCexiL65X b7albM4jpmvrc2FT8lyca/zgOpWcOW1AzpoMAgNUzMBGWXlnfHW5WD5s9W85B7iOKpYe 2SICicT/T+bpnt2LBj4FH36N7WzEN9WX9uns1YUXpMZ3pmsVKCf3SJg1JQDao5vpcECr jmDCgWTuaQNdGK9DQDpz6dbw9IDy4/hVxvcQ4tMC2QfQJoitN4MhrfRah5zbgFLc5TN1 rTOw==
X-Gm-Message-State: APzg51B+/Z6xTUziiQ2kcn1Zlahyyr4+Fsp48hEdQPXMQlHQPIcTyE0C TRORAYW/wOSfm+0cOYxecep9DG4vxZgSI9HIpiapeg==
X-Google-Smtp-Source: ANB0Vdb25BPwl7MK6LIcYLrwXYyg9UxV659E2WamBx2CwHu+sc86Wh7Cckmg9gWmllgPApVESYDovcbEkMCFtiwH+NE=
X-Received: by 2002:a1c:398b:: with SMTP id g133-v6mr1543634wma.5.1536227993010; Thu, 06 Sep 2018 02:59:53 -0700 (PDT)
MIME-Version: 1.0
References: <alpine.DEB.2.20.1809061011520.5965@grey.csi.cam.ac.uk>
In-Reply-To: <alpine.DEB.2.20.1809061011520.5965@grey.csi.cam.ac.uk>
From: Erik Kline <ek@google.com>
Date: Thu, 06 Sep 2018 18:59:40 +0900
Message-ID: <CAAedzxpM=+TtH0wEyePWXLFKtgeFxkYpYyvCjz+aeG6PLrzV2g@mail.gmail.com>
To: dot@dotat.at
Cc: doh@ietf.org, dprive@ietf.org
Content-Type: multipart/signed; protocol="application/pkcs7-signature"; micalg="sha-256"; boundary="000000000000da9ef0057530f32c"
Archived-At: <https://mailarchive.ietf.org/arch/msg/doh/ofVxW2k4g9Wr4shFBADlnazJgqU>
Subject: Re: [Doh] DoT and DoH at Cambridge
X-BeenThere: doh@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: DNS Over HTTPS <doh.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/doh>, <mailto:doh-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/doh/>
List-Post: <mailto:doh@ietf.org>
List-Help: <mailto:doh-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/doh>, <mailto:doh-request@ietf.org?subject=subscribe>
X-List-Received-Date: Thu, 06 Sep 2018 09:59:57 -0000
> On further investigation the vast majority of these were queries like > RRRRRR-dnsotls-ds.metric.gstatic.com (where RRRRRR is random) from devices > on eduroam. So to me it looks like Google are measuring availability of > DoT support using some small proportion of Android users. (1% of recent > versions?) Ben Schwartz can comment further on whether there's an experiment ongoing or not. However, these kind of queries are also used by the DoT code in Pie to help validate whether the DoT answering thing actually speaks DNS (as opposed to someone's random webserver they left running or whatnot). I wouldn't have necessarily expected the disparity between dnsotls queries and actual subsequent DoT traffic. Hmm...
- [Doh] DoT and DoH at Cambridge Tony Finch
- Re: [Doh] DoT and DoH at Cambridge Erik Kline
- Re: [Doh] DoT and DoH at Cambridge Tony Finch
- Re: [Doh] DoT and DoH at Cambridge Tony Finch
- Re: [Doh] DoT and DoH at Cambridge bert hubert
- Re: [Doh] DoT and DoH at Cambridge Tony Finch
- Re: [Doh] DoT and DoH at Cambridge Daniel Stenberg
- Re: [Doh] DoT and DoH at Cambridge Tony Finch