On 01/11/2021 17.24, Daniel Kahn Gillmor wrote:
Is there an additional privacy leak if there were to be more than one EDNS Padding option?
I don't think it's possible to leak more privacy by doing that. Assuming an encrypted channel, only the overall length of the DNS message should matter. Perhaps if the "surprising" repeat could trigger some bug, I imagine the effect might then be observable, but it still doesn't sound privacy-risky to me.
--Vladimir | knot-resolver.cz _______________________________________________ dns-privacy mailing list [email protected] https://www.ietf.org/mailman/listinfo/dns-privacy
