nanog mailing list archives
Re: Yet another Quadruple DNS?
From: Ken Chase <math () sizone org>
Date: Thu, 29 Mar 2018 12:34:37 -0400
Who's got visible projects looking to detect this from various points/regimes on the internet? (University of Toronto's IXMaps group whom I advised a few times over the years did something similar for routes, not that BGPlay isnt out there, but they translated it into human as a sociology project - borne of the Carnivore era. https://www.ixmaps.ca/ ) Im glad no one said Namecoin yet. Oops. /kc On Thu, Mar 29, 2018 at 04:26:47PM +0000, Baldur Norddahl said: >> >> >> Technically, tweaking your DNS resolver to lie (and/or to log) is much >> easier and faster (and waaaaay less expensive) than setting up a >> packet interception and rewriting device at line rate. >> > >It is just a static /32 route for well known DNS resolvers to the ISP >resolver. It is free and trivial. To make your resolver reply with the >correct IP you simply add all the well known /32 addresses to the localhost >interface. > >To get any service instead of just well known ones, you can use source >routing based on the port nummer 53. Direct this to a Linux server that >will NAT the traffic towards the ISP DNS. This is also trivial and free, >provided your routers support source routing (ours do). > >Detectable yes, but also hard to escape for the average user. They will >need to go full VPN. Running your own resolver will not work. > >Regards > >Baldur -- Ken Chase - math () sizone org Guelph Canada
Current thread:
- Re: Yet another Quadruple DNS?, (continued)
- Re: Yet another Quadruple DNS? Brian Kantor (Mar 29)
- Re: Yet another Quadruple DNS? Chris Adams (Mar 29)
- Re: Yet another Quadruple DNS? Brian Kantor (Mar 29)
- Re: Yet another Quadruple DNS? Bill Woodcock (Mar 29)
- Re: Yet another Quadruple DNS? Michael Crapse (Mar 29)
- Re: Yet another Quadruple DNS? Alan Buxey (Mar 29)
- Re: Yet another Quadruple DNS? Stephane Bortzmeyer (Mar 30)
- Re: Yet another Quadruple DNS? Jimmy Hess (Mar 29)
- Re: Yet another Quadruple DNS? Stephane Bortzmeyer (Mar 29)
- Re: Yet another Quadruple DNS? Baldur Norddahl (Mar 29)
- Re: Yet another Quadruple DNS? Ken Chase (Mar 29)
- Re: Yet another Quadruple DNS? Stephen Satchell (Mar 29)
- Re: Yet another Quadruple DNS? joel jaeggli (Mar 29)
- Re: Yet another Quadruple DNS? Christopher Morrow (Mar 30)
- Re: Yet another Quadruple DNS? Royce Williams (Mar 30)
- Re: Yet another Quadruple DNS? Royce Williams (Mar 30)
- Re: Yet another Quadruple DNS? Stephane Bortzmeyer (Mar 30)
- Re: Yet another Quadruple DNS? William Waites (Mar 30)
- Re: Yet another Quadruple DNS? Stephane Bortzmeyer (Mar 30)
- Re: Yet another Quadruple DNS? Feldman, Mark (Mar 30)
- Re: Yet another Quadruple DNS? Ken Chase (Mar 30)