Re: [Resolverless-dns] Paper on Resolver-less DNS

"Ralf Weber" <dns@fl1ger.de> Wed, 21 August 2019 07:37 UTC

Return-Path: <dns@fl1ger.de>
X-Original-To: resolverless-dns@ietfa.amsl.com
Delivered-To: resolverless-dns@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id EA0E91208F5 for <resolverless-dns@ietfa.amsl.com>; Wed, 21 Aug 2019 00:37:56 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.9
X-Spam-Level:
X-Spam-Status: No, score=-1.9 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, SPF_HELO_NONE=0.001, SPF_PASS=-0.001] autolearn=ham autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id Qlmu89dp_fE1 for <resolverless-dns@ietfa.amsl.com>; Wed, 21 Aug 2019 00:37:54 -0700 (PDT)
Received: from smtp.guxx.net (nyx.guxx.net [85.10.208.173]) by ietfa.amsl.com (Postfix) with ESMTP id 4DDD21208D6 for <resolverless-dns@ietf.org>; Wed, 21 Aug 2019 00:37:54 -0700 (PDT)
Received: by nyx.guxx.net (Postfix, from userid 107) id 3904A5F42D3F; Wed, 21 Aug 2019 09:37:53 +0200 (CEST)
Received: from [192.168.2.190] (p54B8ABDF.dip0.t-ipconnect.de [84.184.171.223]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by nyx.guxx.net (Postfix) with ESMTPSA id 596FB5F42337; Wed, 21 Aug 2019 09:37:51 +0200 (CEST)
From: "Ralf Weber" <dns@fl1ger.de>
To: "Erik Sy" <sy@informatik.uni-hamburg.de>
Cc: resolverless-dns@ietf.org
Date: Wed, 21 Aug 2019 09:37:50 +0200
X-Mailer: MailMate (1.12.5r5635)
Message-ID: <11C3BC62-667E-40E9-ADD7-D33C72DA29F2@fl1ger.de>
In-Reply-To: <299fda32-c699-cd00-8108-696bc3c6c28b@informatik.uni-hamburg.de>
References: <20190819203948.2BE688829F4@ary.qy> <f23e363b-1dda-5a79-5f7a-6a12b62ad67d@informatik.uni-hamburg.de> <DBB58F6A-A36C-4D71-A2A8-0A603AAA4076@fl1ger.de> <299fda32-c699-cd00-8108-696bc3c6c28b@informatik.uni-hamburg.de>
MIME-Version: 1.0
Content-Type: text/plain; charset=utf-8
Content-Transfer-Encoding: 8bit
Archived-At: <https://mailarchive.ietf.org/arch/msg/resolverless-dns/IYOCd9XLZEwxesrwn5GquKrrs4E>
Subject: Re: [Resolverless-dns] Paper on Resolver-less DNS
X-BeenThere: resolverless-dns@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: Resolverless DNS <resolverless-dns.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/resolverless-dns>, <mailto:resolverless-dns-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/resolverless-dns/>
List-Post: <mailto:resolverless-dns@ietf.org>
List-Help: <mailto:resolverless-dns-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/resolverless-dns>, <mailto:resolverless-dns-request@ietf.org?subject=subscribe>
X-List-Received-Date: Wed, 21 Aug 2019 07:38:00 -0000

Moin!

On 20 Aug 2019, at 21:30, Erik Sy wrote:
> Ok, as a matter of fact we have evidence that some ISPs collected data
> on their customers' private online activities with the intention to sell
> this information to advertising companies.
They were also fined and had to stop it. Part of the reason here is
probably because unlike web companies ISP and Telcos are regulated in
most parts of the world.

> Your standpoint is, that this
> has nothing to do with the ISP's DNS resolver or selling DNS data.
Yes because I have not seen evidence and certainly not broad evidence
needed to call this a common practice which a lot of people do. I’ve
seen lots of evidence of people abusing HTTP (the once you cite being
one) to invade user privacy. Thus I want my name resolution to go to
my ISP and not to some web server operator I have no relationship
with.

> I have no explanation why an ISP should apply better privacy protections
> to their customers DNS data compared to the customers network traffic
> because both enable a significant monitoring of the users' online
> activities. Do you have an explanation for this?
Yes. ISP/Telcos are usually big organisations. DNS mostly is seen as
a network function and thus is within some kind of engineering department.
Engineers have a different mindset on data then say people working in a
marketing department, which usually is where these advertising programs
originate.

So long
-Ralf
---
Ralf Weber