[Touch-packages] [Bug 1704288] Re: Ubuntu 16.04 VPN : DNS information leaking through dnsmasq

Andreas Hasenack Thu, 31 Aug 2017 14:12:11 -0700

*** This bug is a duplicate of bug 1688018 ***
    https://bugs.launchpad.net/bugs/1688018


I did some tests, and can confirm that with n-m 1.2.6-0ubuntu0.16.04.1 my local 
DNS (sent via dhcp to the machine) is also added to the DNS server list when 
the VPN is established:
Aug 31 20:36:32 31-64 dnsmasq[1118]: setting upstream servers from DBus
Aug 31 20:36:32 31-64 dnsmasq[1118]: using nameserver 10.0.5.5#53(via ens3)
Aug 31 20:36:32 31-64 dnsmasq[1118]: using nameserver 10.172.64.1#53 for domain 
private
Aug 31 20:36:32 31-64 dnsmasq[1118]: using nameserver 10.172.64.1#53 for domain 
internal
(...)

The line about using the 10.0.5.5 nameserver does not appear the logs
when using n-m 1.2.2.

As far as I can see, there are two other bugs filed about this:
bug #1671606 DNS server from vpn connection is not being used after 
network-manager upgrade to 1.2.6-0ubuntu0.16.04.1
bug #1688018 DNS server from vpn connection is not being used after 
network-manager upgrade to 1.2.6


** This bug has been marked a duplicate of bug 1688018
   DNS server from vpn connection is not being used after network-manager 
upgrade to 1.2.6

-- 
You received this bug notification because you are a member of Ubuntu
Touch seeded packages, which is subscribed to dnsmasq in Ubuntu.
https://bugs.launchpad.net/bugs/1704288

Title:
  Ubuntu 16.04 VPN : DNS information leaking  through dnsmasq

Status in dnsmasq package in Ubuntu:
  New

Bug description:
  Hi,
  After connecting the VPN 

  # killall -USR1 dnsmasq

  # tail syslog.log
  ...
  Jul 13 02:18:56 tp dnsmasq[1476]: time 1499905136
  Jul 13 02:18:56 tp dnsmasq[1476]: cache size 0, 0/0 cache insertions re-used 
unexpired cache entries.
  Jul 13 02:18:56 tp dnsmasq[1476]: queries forwarded 154, queries answered 
locally 1
  Jul 13 02:18:56 tp dnsmasq[1476]: queries for authoritative zones 0
  Jul 13 02:18:56 tp dnsmasq[1476]: server 198.18.0.1#53: queries sent 0, 
retried or failed 0
  Jul 13 02:18:56 tp dnsmasq[1476]: server 198.18.0.2#53: queries sent 0, 
retried or failed 0
  Jul 13 02:18:56 tp dnsmasq[1476]: server 192.168.0.254#53: queries sent 12, 
retried or failed 0   

  The first two name server are provided by the vpn connection. 
  The last 192.168.0.254 name server is running on my local router and forward 
request to my ISP (this is the default name server when VPN is not activated).

  When I query the DNS, queries are sent to each name server which makes
  a DNS information leaking to my ISP

  I validated that by the mean of tcpdump on eth and tun interfaces and
  also by using  that site: https://www.dnsleaktest.com/

  I tried to force the VPN  DNS server IPs in the VPN configuration (edit Vpn 
connection -> ipv4 - > Automatic Adresses only ..) but the result is the same. 
   
  dnsmasq must not have the local DNS present while VPN connection is 
established.

To manage notifications about this bug go to:
https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/1704288/+subscriptions

-- 
Mailing list: https://launchpad.net/~touch-packages
Post to     : [email protected]
Unsubscribe : https://launchpad.net/~touch-packages
More help   : https://help.launchpad.net/ListHelp

[Touch-packages] [Bug 1704288] Re: Ubuntu 16.04 VPN : DNS information leaking through dnsmasq

Reply via email to