IETF Logo Mail Archive

Re: [Resolverless-dns] Paper on Resolver-less DNS

"John Levine" <johnl@taugh.com> Mon, 19 August 2019 20:39 UTC

Return-Path: <johnl@iecc.com>
X-Original-To: resolverless-dns@ietfa.amsl.com
Delivered-To: resolverless-dns@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id B0A56120048 for <resolverless-dns@ietfa.amsl.com>; Mon, 19 Aug 2019 13:39:51 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.751
X-Spam-Level:
X-Spam-Status: No, score=-1.751 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, DKIM_SIGNED=0.1, DKIM_VALID=-0.1, DKIM_VALID_AU=-0.1, HEADER_FROM_DIFFERENT_DOMAINS=0.249, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=no autolearn_force=no
Authentication-Results: ietfa.amsl.com (amavisd-new); dkim=pass (1536-bit key) header.d=iecc.com header.b=DD1HtOSG; dkim=pass (1536-bit key) header.d=taugh.com header.b=dn7TNSZG
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id PmO5DM6609nH for <resolverless-dns@ietfa.amsl.com>; Mon, 19 Aug 2019 13:39:50 -0700 (PDT)
Received: from gal.iecc.com (gal.iecc.com [IPv6:2001:470:1f07:1126:0:43:6f73:7461]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id 121E81208DF for <resolverless-dns@ietf.org>; Mon, 19 Aug 2019 13:39:49 -0700 (PDT)
Received: (qmail 13866 invoked from network); 19 Aug 2019 20:39:48 -0000
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=iecc.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=3628.5d5b0914.k1908; i=printer-iecc.com@submit.iecc.com; bh=LWAiSFCWRzLllGWhT5SnCEQ6OekpzrESNbx1/kLZlJc=; b=DD1HtOSGbR/qiTXtBLlnWuUPhLf+/pDotVIt6zDNosXye4K8OYY2FGP2Hh9nGIWggx+EvdFtGzBqRwDeJSkux5+1cJrQ0SCGO4C6G8ewPAVCWPcuJqFNkyF1WWlDDhnJIaXokMyQb1Yg7NA4mFxG+jHGChrjPVqmypY1kEVZyBUWlOvQE5tjgDRtV/zkX9Ly+fPDN4uWncjICoyHm0w6DNdTtZwbIKaf1Xx4xyHofKePCAWXmyoTEopyWoVr5GWT
DKIM-Signature: v=1; a=rsa-sha256; c=simple; d=taugh.com; h=date:message-id:from:to:cc:subject:in-reply-to:mime-version:content-type:content-transfer-encoding; s=3628.5d5b0914.k1908; olt=printer-iecc.com@submit.iecc.com; bh=LWAiSFCWRzLllGWhT5SnCEQ6OekpzrESNbx1/kLZlJc=; b=dn7TNSZGKd1tDo7LSnBFSIsFK8554FQwbUiBFEqPMUil+K69uVP9Mq1PeTNRNva9xR2Ft5wv2sHmjjxPhJE8dQSGRbOIpHjY1/B1odFDYg8Nwf7zMMwkJ0HPgPcysgbAXW6/Lh7I+sDvubLLYOF+dEqroA29m7p56X+kt7IafA6SN09seMOsL+UynBu5wC+JzqLm/N94bneecERONd38fNpRZnmk2aIqxiRqnCRXkEBJDdccid1bg5TsIoFPQJSt
Received: from ary.qy ([64.246.232.221]) by imap.iecc.com ([64.57.183.75]) with ESMTPSA (TLS1.2 ECDHE-RSA AES-256-GCM AEAD, printer@iecc.com) via TCP; 19 Aug 2019 20:39:48 -0000
Received: by ary.qy (Postfix, from userid 501) id 2BE688829F4; Mon, 19 Aug 2019 16:39:47 -0400 (EDT)
Date: Mon, 19 Aug 2019 16:39:47 -0400
Message-Id: <20190819203948.2BE688829F4@ary.qy>
From: John Levine <johnl@taugh.com>
To: resolverless-dns@ietf.org
Cc: sy@informatik.uni-hamburg.de
In-Reply-To: <213a986b-479c-3d38-6ec3-cf53264474c2@informatik.uni-hamburg.de>
Organization: Taughannock Networks
X-Headerized: yes
Mime-Version: 1.0
Content-type: text/plain; charset="utf-8"
Content-transfer-encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/resolverless-dns/A_vBiGmxhyktDIZA2Fv-LpVp3UA>
Subject: Re: [Resolverless-dns] Paper on Resolver-less DNS
X-BeenThere: resolverless-dns@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Resolverless DNS <resolverless-dns.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/resolverless-dns>, <mailto:resolverless-dns-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/resolverless-dns/>
List-Post: <mailto:resolverless-dns@ietf.org>
List-Help: <mailto:resolverless-dns-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/resolverless-dns>, <mailto:resolverless-dns-request@ietf.org?subject=subscribe>
X-List-Received-Date: Mon, 19 Aug 2019 20:39:52 -0000

In article <213a986b-479c-3d38-6ec3-cf53264474c2@informatik.uni-hamburg.de> you write:
>Nonetheless, there exists empirical evidence that several popular ISPs
>and Telcos sold data on their customers' online activities to
>advertising companies [1,2,3]. Thus, it is plausible that these ISPs and
>Telcos use their DNS resolver to aggregate such user profiles.

Actually, no, it's not plausible.  The mechanisms described in these
papers are nothing like DNS queries.  If they could get enough data
from DNS queries, why would they bother rewriting HTTP headers?

There are issues with DoH but conspiracy theories about implausible
data mining of DNS logs really are not helpful.

v2.23.0 | Report a Bug | By Email