Re: [DNSOP] [External] Re: Re: Fwd: [Add] new draft: draft-grover-add-policy-detection-00

Mon, 15 Jul 2019 10:43:27 -0700 

"DNSOP" <dnsop-boun...@ietf.org> wrote on 07/15/2019 12:18:15:

> From: "Peter Saint-Andre" <stpe...@mozilla.com>
> To: "Andrew M. Hettinger" <ahettin...@prominic.net>, "Rob Sayre"
> <say...@gmail.com>
> Cc: dnsop@ietf.org, "Paul Vixie" <p...@redbarn.org>, "DNSOP" <dnsop-
> boun...@ietf.org>
> Date: 07/15/2019 12:18
> Subject: [External] Re: [DNSOP] Re: Fwd: [Add] new draft: draft-
> grover-add-policy-detection-00
> Sent by: "DNSOP" <dnsop-boun...@ietf.org>
>
> On 7/15/19 10:54 AM, Andrew M. Hettinger wrote:
>
> > Arguably there's actually a decrease in security over DoT as, rather
> > then your network provider being the one who knows what DNS lookups
> > you're doing, now some third party with whom you have no relationship.
>
> You, as a lone user, have zero leverage with your network provider.
> Firefox or Chome or Safari (etc.), as the user agent for millions of
> people, can exercise more leverage and also enter into contractual
> agreements with trusted recursive resolvers. That seems like a promising
> avenue to explore.
>
> > Let's be clear, "some third party" is pronounced "Cloudflare." This
> > isn't to bash on Cloudflare, but everyone's DNS traffic going to ONE
> > company?
>
> Mozilla's intent is to deploy a set of trusted recursive resolvers, as
> Ekr explained back in March on the DoH list:
>
> https://mailarchive.ietf.org/arch/msg/doh/po6GCAJ52BAKuyL-dZiU91v6hLw
>
> But these topics might be more appropriate for the ADD list...
>
> Peter
>
> _______________________________________________
> DNSOP mailing list
> DNSOP@ietf.org
> https://www.ietf.org/mailman/listinfo/dnsop

I, as a lone user have even LESS leverage over Cloudflare, or the Mozilla
Foundation, to whom I am not even a customer. More disturbingly, the
Mozilla Foundation is a US corporation, subject to (gagged) FISA warrants.
Considering one of the biggest surveillors in the world is the US
government, surely you can see how maybe concentrating all the DNS traffic
into the hands of a single US corporation (the Mozilla Foundation) might
not be the greatest plan.

Andrew Hettinger
http://Prominic.NET | Skype: AndrewProminic
Tel: 866.339.3169 (toll free) -or- 1.217.356.2888 x. 110 (int'l)
Fax: 866.372.3356 (toll free) -or- 1.217.356.3356            (int'l)
_______________________________________________
DNSOP mailing list
DNSOP@ietf.org
https://www.ietf.org/mailman/listinfo/dnsop

Reply via email to